last executing test programs:

6.464719379s ago: executing program 2 (id=992):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_usb_connect$cdc_ecm(0x2, 0xbc, &(0x7f00000001c0)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xaa, 0x1, 0x1, 0x9, 0xa0, 0x65, [{{0x9, 0x4, 0x0, 0x5, 0x3, 0x2, 0x6, 0x0, 0x60, {{0x7, 0x24, 0x6, 0x0, 0x0, "4218"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x4, 0x1f, 0x9, 0x2}, [@mdlm={0x15, 0x24, 0x12, 0xf1b}, @mdlm_detail={0x50, 0x24, 0x13, 0x9, "bcada22b6b60a1dd6f16c49a0e218d58f034fbd9ee3d5f434f3a15b1c269d4b675d7dbccc98401ecfc8c538c19e61934e40579899a8e09871a0b042b8f79477311beb262785ef511eea8530c"}, @mdlm_detail={0x8, 0x24, 0x13, 0x6, "f6ac36b0"}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x5, 0x9, 0x80}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0xfa, 0x9, 0x7f}}}}}]}}]}}, &(0x7f0000000280)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x310, 0x8, 0x8, 0x80, 0xff, 0x1}, 0x0, 0xfffffffffffffffe, 0x3, [{0x91, &(0x7f00000005c0)=@string={0x91, 0x3, "e8c955f903ade07785346108aa273d54e3c6c7d0927cb040ceafe541180cd02da0f332a8f8c9301e3a1bfe6efbf64655ab1557dde330a318c24dcab857aaf264d601956b3632f41b7edaf65fcb090bb774d1f7e8c9f058247692939d11439a75f60d1cba0fa7ad98df0346bfcb66d3b219744aa735da9386cad89ec8f8eedbd7bf09f746fe88c4fe26ed26d7182274"}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x458}}, {0x81, &(0x7f0000000680)=@string={0x81, 0x3, "a72b3d22aabac555f077a8ff88fe2b271c154769d24399eea0d112221495e82dcb9e740af680a5188600f82f35592cfbfa1cb0aba22a1ff26bdfe15c5a97ae7f3dd85be82332dbc9dbd08d84122eec1f6a0d490475bc04210510308ae82f7c26a0f3041c3975941c39de8f1d2e1f8b89cd87016533b17a702217bf0c04ccd3"}}]})
syz_usb_control_io$cdc_ecm(r2, &(0x7f0000000840)={0x14, &(0x7f0000000740)={0x20, 0x23, 0xaf, {0xaf, 0x4, "e88dda3f3649712316d3583bf7dea63804d2828b517a9b3ade1ba995d2ec84e135497385efa69b5c83ebb6d08166e89d97269431f30653168b8271e3e83e224b1186e81135ab9e9c16f352c3b389ccaaee21b5637f596701ece6519245accd528875e84641595d88aff29f7b04cae307b9dcd34e46babbc94869cce6ab3008c8c4a1b2979eb6727e84c5fb913f9d2809d766646f3d3ddff56a49d4f824ec9f82e26b3e166365572dcee5c854ff"}}, &(0x7f0000000800)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000009c0)={0x1c, &(0x7f0000000880)={0x20, 0x16, 0xa0, "75a8398cb8499a95805e4664e365227b95792bd1e40d0edab3f474323644a21b5be322c76b29b1e3baaf0138101ecf89751d683a37f16253be69742bd0a08f82f12a3bff22818aea36a4b9a0d775b87f7b71256843bd10cb2e22fc1041b693839909a6c4e85011a3b02c45ac4333a74cc7cfedebf2dc2b8fc93104fd783fb38ece92ce31a1f54219f907f59cbe4cbd768d61c33581161b919f8506a38766074c"}, &(0x7f0000000940)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000980)={0x0, 0x8, 0x1, 0x2}})
syz_usb_control_io(r2, &(0x7f0000000440)={0x2c, &(0x7f0000000340)={0x0, 0xb, 0x87, {0x87, 0x7, "7b8eb67f6a983101c2b6c8e038eaa5eeae185e3d8c42425ef988452cc761fbd4728d1b0deb51836c45927a6fb2300b79e8fca3f21cde30b538ab743c0ba61b261626b9c9dbbd8794cbf807a8818d88382072d10637e86ca806da8bfeca3ba5ceb77b0ce1c6d35625105e4f3799ea3157ad023e874e832367b761013c9f17bb66ab92eb7494"}}, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc08}}, &(0x7f0000000180)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f00000001c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x0, 0x0, 0x5, 0x1, "40f92194", "ed3020cb"}}, &(0x7f0000000400)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7, 0x18, 0x70, 0xe6, 0xf9, 0x5, 0x7f}}}, &(0x7f0000001280)={0x84, &(0x7f0000000480)={0x40, 0x15, 0x70, "8b4d278cfaf5d0e53ab761af0384f9d5e71fb0ff0dd38eb26d78bc43fcc0f9d53d7ac43469b3ec67aff9a39918210a37eeff6957e6e1683ac6eaa2d7a3b265b26b8921af56f53ff97426e275e8ed0087d2864c6af8c4cf92aec1a2d346f0d61e122be3fe545b5593bf94f3552b91ae6e"}, &(0x7f0000000500)={0x0, 0xa, 0x1, 0x83}, &(0x7f0000000540)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000580)={0x20, 0x0, 0x4, {0x2, 0x4}}, &(0x7f00000005c0)={0x20, 0x0, 0x4, {0x120, 0x20}}, &(0x7f0000000600)={0x40, 0x7, 0x2, 0x4}, &(0x7f0000000640)={0x40, 0x9, 0x1}, &(0x7f0000000680)={0x40, 0xb, 0x2, 'eG'}, &(0x7f00000006c0)={0x40, 0xf, 0x2, 0x2}, &(0x7f0000000700)={0x40, 0x13, 0x6}, &(0x7f0000000740)={0x40, 0x17, 0x6, @local}, &(0x7f0000000780)={0x40, 0x19, 0x2, "7c01"}, &(0x7f00000007c0)={0x40, 0x1a, 0x2, 0x7fff}, &(0x7f0000000800)={0x40, 0x1c, 0x1, 0x54}, &(0x7f0000000840)={0x40, 0x1e, 0x1, 0x4}, &(0x7f0000000880)={0x40, 0x21, 0x1, 0x7}})
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000002440)={0x0, 0x0, &(0x7f0000002400)={&(0x7f0000000940)=ANY=[@ANYBLOB='$\t\x00', @ANYRES16=r3, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="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"], 0x924}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2180, 0x0)
sched_setscheduler(r4, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f00000000c0)=[{0x14}, {0x3d}, {0x0, 0x0, 0x0, 0x7ffffdc2}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000240), 0x12)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001c40)=@newtaction={0xf8, 0x30, 0x1, 0x0, 0x0, {}, [{0xe4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0xfffffffe}}]]}, {0x4}, {0xc}, {0xc}}}, @m_police={0x74, 0x2, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffe01}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf8}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x0, "b8ef"}, @local=@item_012={0x2, 0x2, 0x0, "1a70"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)

5.636056421s ago: executing program 4 (id=1002):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x6805c7, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x2d, 0x0, 0x41}, {}]})
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
write$9p(r0, &(0x7f0000001400)="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", 0x200)
sendfile(r0, r1, 0x0, 0xe065)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r7 = dup(r6)
write$FUSE_BMAP(r7, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r7, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])
prlimit64(r2, 0xc, &(0x7f0000000280)={0x7, 0x7}, &(0x7f0000000400))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x3}, 0x48)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)={@ifindex, 0xffffffffffffffff, 0xd, 0x0, 0x0, @prog_id}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x10)
poll(&(0x7f00000004c0)=[{0xffffffffffffffff, 0xa}], 0x1, 0x0)
mount$incfs(&(0x7f0000000340)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xffff)

4.709756657s ago: executing program 4 (id=1023):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2179, 0x77, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
getresgid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000300)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000800)=ANY=[], 0x28}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x9, {[@local=@item_4={0x3, 0x2, 0x0, "5780eafb"}, @global=@item_012={0x2, 0x1, 0x0, '\x00\x00'}, @global]}}, 0x0}, 0x0)

3.428920187s ago: executing program 2 (id=1037):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1ff)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c460000004000000000000000000300030000000000000000003800000000000000000000000000200080"], 0x158)
rt_sigprocmask(0x0, 0x0, &(0x7f0000000240), 0x8)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c4600000000000000000000000000000000ffffffff6e02000000001000400000000000000000000000000000000000000000003800020003000000000000000000000000000000000000000000000000000000000007000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000003"], 0xee6)
close(r0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x14, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x5c}, {0x4}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x14c, r2, 0x4, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x4000}, @NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@broadcast}, @NL80211_ATTR_SCAN_FREQUENCIES={0x24, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x1584e9df}, {0x8, 0x0, 0x3}, {0x8, 0x0, 0x7739fbd4}, {0x8, 0x0, 0xdb}]}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_IE={0xf1, 0x2a, [@fast_bss_trans={0x37, 0xeb, {0x43, 0x7, "ef9355c65a2fca1f5399d6d58debcbb0", "7ec7069d2d261dbb1f864f1e396e9bf4af34f9f6745da196e63307d57618ba22", "ca75b5d1c6c7730dcee37049ce3aabd6eb0bac9145efba315ce3e31a8445db47", [{0x2, 0x12, "33ae166d0124dcd6c81b73bfd665d762e12c"}, {0x1, 0x6, "57cac68ddc71"}, {0x2, 0x15, "a50828562236a5deeed267e1ad102c87450cd7ea2a"}, {0x2, 0x23, "276b7aa2e6e52e2e02231c2dc53c3592d76e56e2d432144895d85fa0cabce31e035ec7"}, {0x4, 0x12, "8c84b5daa64756efdd490bbb567155240532"}, {0x2, 0x2, "bbaa"}, {0x2, 0x27, "2bd7c2260818e54d3d965bf87cb348e6bf9c4f0c64314b1636afbbe3b7944f5f9a27b51cfcf9a7"}]}}]}]}, 0x14c}}, 0xa014)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1ff) (async)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c460000004000000000000000000300030000000000000000003800000000000000000000000000200080"], 0x158) (async)
rt_sigprocmask(0x0, 0x0, &(0x7f0000000240), 0x8) (async)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c4600000000000000000000000000000000ffffffff6e02000000001000400000000000000000000000000000000000000000003800020003000000000000000000000000000000000000000000000000000000000007000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000003"], 0xee6) (async)
close(r0) (async)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x14, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x5c}, {0x4}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x14c, r2, 0x4, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x4000}, @NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@broadcast}, @NL80211_ATTR_SCAN_FREQUENCIES={0x24, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x1584e9df}, {0x8, 0x0, 0x3}, {0x8, 0x0, 0x7739fbd4}, {0x8, 0x0, 0xdb}]}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_IE={0xf1, 0x2a, [@fast_bss_trans={0x37, 0xeb, {0x43, 0x7, "ef9355c65a2fca1f5399d6d58debcbb0", "7ec7069d2d261dbb1f864f1e396e9bf4af34f9f6745da196e63307d57618ba22", "ca75b5d1c6c7730dcee37049ce3aabd6eb0bac9145efba315ce3e31a8445db47", [{0x2, 0x12, "33ae166d0124dcd6c81b73bfd665d762e12c"}, {0x1, 0x6, "57cac68ddc71"}, {0x2, 0x15, "a50828562236a5deeed267e1ad102c87450cd7ea2a"}, {0x2, 0x23, "276b7aa2e6e52e2e02231c2dc53c3592d76e56e2d432144895d85fa0cabce31e035ec7"}, {0x4, 0x12, "8c84b5daa64756efdd490bbb567155240532"}, {0x2, 0x2, "bbaa"}, {0x2, 0x27, "2bd7c2260818e54d3d965bf87cb348e6bf9c4f0c64314b1636afbbe3b7944f5f9a27b51cfcf9a7"}]}}]}]}, 0x14c}}, 0xa014) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) (async)

3.367729329s ago: executing program 2 (id=1039):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000700)=ANY=[@ANYBLOB="008000000000000002004e23e0000001020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000600000002004e247f000001000000000000000000000000000000000000000000000000000000000000000000ddff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22ac14143400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e217f000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006da2705f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ac1414bb00000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x390)

3.367553579s ago: executing program 2 (id=1040):
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x800)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000404f045db6000000000001090224000100000000090400000103000000092100000001221e0009058103"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f00000003c0)={0x0, 0x22, 0x1e, {[@global=@item_4={0x3, 0x1, 0x0, "c28f1958"}, @main=@item_012={0x2, 0x0, 0xa, "57df"}, @local=@item_4={0x3, 0x2, 0x0, "896c84ec"}, @main=@item_012={0x1, 0x0, 0x0, ']'}, @global=@item_4={0x3, 0x1, 0x0, "1624a015"}, @global=@item_012={0x2, 0x1, 0x0, "b072"}, @global=@item_012={0x1, 0x1, 0x0, "df"}, @local=@item_4={0x3, 0x2, 0x8, "36af06f3"}]}}, 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000001500)={[{@user_xattr}, {@debug}, {@test_dummy_encryption}, {@abort}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xfffffffffffffffa}}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@uid_lt={'uid<', r0}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fsmagic={'fsmagic', 0x3d, 0x7fffffffffffffff}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'ext4\x00'}}]}, 0x10, 0x4fe, &(0x7f0000001780)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.swap.events\x00', 0x275a, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000003380))
r4 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f00000001c0)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f00000016c0)=""/175, 0x0})
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000000)={0x0, r4})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096})
setsockopt$inet6_tcp_int(r2, 0x6, 0x8, &(0x7f0000000080)=0x800, 0x4)
connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)

3.34361994s ago: executing program 3 (id=1042):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000540)=[{{&(0x7f0000000340)=@abs={0x1, 0x0, 0x4e23}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40080}}], 0x1, 0x40884)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001140)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000500)='sched_switch\x00', r3}, 0x10)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a0435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0xe00000000000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x51}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
rmdir(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000300)='ext4_request_inode\x00', r3}, 0x10)

2.495732673s ago: executing program 3 (id=1049):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800759, &(0x7f00000002c0)={[{@errors_remount}, {@bh}, {@nogrpid}, {@noload}, {@data_writeback, 0x0}, {@nolazytime}, {@noinit_itable}, {@usrquota}, {@errors_continue}, {@noacl}, {@noauto_da_alloc}, {@mblk_io_submit}], [], 0x2c}, 0x2, 0x500, &(0x7f0000000c80)="$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")
prlimit64(0x0, 0x7, &(0x7f00000000c0), 0x0)
syz_io_uring_setup(0x2de9, &(0x7f0000001600)={0x0, 0xb, 0x6, 0x0, 0x198, 0x0, 0x0}, 0x0, 0x0)

2.417752476s ago: executing program 4 (id=1051):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xce151000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000002000800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008d000000240000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "2af01c3d0040fbffffffffffffff00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TCSETS(r5, 0x5402, &(0x7f0000000240)={0x400, 0x0, 0x0, 0x0, 0x0, "446d25dc3696ad0454800068e08ee2df361089"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000880)=0x4)
chdir(&(0x7f0000000340)='./cgroup\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000ffffff0000f8ffffff000071123900000000009500000700000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000080007b8af8ff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffe5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0xf)

2.383729208s ago: executing program 0 (id=1054):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x8, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})

2.357042319s ago: executing program 0 (id=1055):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000900)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x3800b9, 0x0)
openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
mount(&(0x7f0000000140)=@md0, &(0x7f0000000180)='./file0/file1\x00', &(0x7f0000000280)='affs\x00', 0x240850, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {0x4}}}, &(0x7f0000000200)='syzkaller\x00', 0x6, 0xb, &(0x7f0000001e40)=""/4099}, 0x90)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000a40)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000800000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@const={0x0, 0x0, 0x0, 0x9, 0x4}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}, @restrict={0x0, 0x0, 0x0, 0xb, 0x3}]}}, 0x0, 0x5a}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'erspan0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x4c, 0x10, 0x405, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6}, @IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_ENCAP_FLAGS={0x6}]}}}]}, 0x4c}}, 0x0)
r5 = socket(0x11, 0x800000002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x5d0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000000000002eeed88696", @ANYRES32=r6], 0x20}}, 0x0)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x8008550e, &(0x7f0000000040))
creat(&(0x7f0000000040)='./file0/file1\x00', 0x0)

2.356843729s ago: executing program 0 (id=1056):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000000)={&(0x7f0000000080)=""/108, 0x6c, 0x20, 0x7})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0xde34)
read$rfkill(r0, &(0x7f0000000100), 0x8)
userfaultfd(0x80001)
fadvise64(r0, 0x0, 0x3f00, 0x4)

2.356703929s ago: executing program 0 (id=1057):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x46c4c1, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000140)=0xe, 0x80000)
read(r1, &(0x7f0000000180)=""/143, 0x8f)

2.309139071s ago: executing program 0 (id=1058):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000845, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x18, 0x0, &(0x7f00000000c0))
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
ftruncate(0xffffffffffffffff, 0x0) (async)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000845, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
getsockopt$inet6_buf(r0, 0x29, 0x18, 0x0, &(0x7f00000000c0)) (async)

2.30894707s ago: executing program 0 (id=1059):
creat(&(0x7f0000000000)='./bus\x00', 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_usb_connect$uac1(0x0, 0xa2, &(0x7f0000000d80)=ANY=[@ANYBLOB="12010000000000406b1d01014000010203010902900003010000000904000000010100000a24010000000201020b240800000000822c81fb05240400000c2402000000000000000000090401000001020000090401010101020000090501090000000000072501000000000904020000010200000904020101012200000e240201000000006f2ac68ce73c0724010000020009058209000200000007250100000800"], 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x230080, 0x0)
dup3(r0, r1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r5, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r6 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r6, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}}, 0x0)
r9 = open(&(0x7f0000000000)='./bus\x00', 0x1c5c7e, 0x0)
r10 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r10)
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r11, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r11, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r11, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x76, &(0x7f0000000240)={@local, @random="6a2ddcf6177a", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x15, 0x10, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa}, @exp_fastopen={0xfe, 0x10, 0xf989, "6080356e793ca9d55b8ef24e"}, @fastopen={0x22, 0x3, "e1"}, @generic={0x0, 0xe, "04f6fea52eb715ea7022d662"}, @sack={0x5, 0x12, [0x0, 0x0, 0x0, 0x0]}]}}}}}}}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r9}})
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r12}}, 0x24}}, 0x0)

2.296298231s ago: executing program 3 (id=1060):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000000)={&(0x7f0000000080)=""/108, 0x6c, 0x20, 0x7})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0xde34)
read$rfkill(r0, &(0x7f0000000100), 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x9, 0x13, r0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
fadvise64(r0, 0x0, 0x3f00, 0x4)

2.220217154s ago: executing program 3 (id=1061):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
io_setup(0x4, &(0x7f0000000280)=<r4=>0x0)
recvmsg$unix(r2, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
dup3(r3, r2, 0x0)
io_submit(r4, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
write(r2, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='scsi_dispatch_cmd_start\x00', r5}, 0x10)
clock_gettime(0x0, &(0x7f0000000200))
write$cgroup_type(r0, &(0x7f0000000080), 0x9)
syz_usb_connect$cdc_ncm(0x0, 0x9e, &(0x7f00000012c0)=ANY=[@ANYBLOB="12011003020000102505a1a44000010203010902"], &(0x7f00000003c0)={0x0, 0x0, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="050f130002"]})

2.159046556s ago: executing program 1 (id=1062):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x0, 0x0}, 0x10)
sendmmsg$inet(r0, &(0x7f00000077c0), 0x400002c, 0xfffe) (fail_nth: 20)

1.8139452s ago: executing program 1 (id=1063):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b708000008", @ANYRES16=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0x4008af12, &(0x7f0000000080)={0x1, 0x7b})
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
dup(r6)
sendmsg$nl_route_sched(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000013c0)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{}, 0x2}}]}, {0x4, 0x6, "b1a0a8c29f95e001860674a8c31f811e72577da3db00e8460eedd9985038c13872388f2253dc40a273cd15e2c982b8551fe7cf67818c6c3e4d07a16a7ee2ecd9a6284f2451154f4b897afab3b2fd3b9a14dd6d8e8994048728dff4189640af3f2f8e63dc22591532"}, {0xc}, {0x2a}}}]}, {0x0, 0x1, [@m_ife={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0x0, 0x3, @link_local}]}, {0x0, 0x6, "c17a9b161aa1ed359f8ca84a68b7fe7b96e7051b71ab820cd0dfd3c7ec3c0cd52a0f261f6eeb5c8e16517ae2b2d7ebee61fc09d2318aaa2744c2f1ec3d4ada09b9e0e10a09033a0f67d4e9bdfbb8e06b22bb777c3c86c97cba364bc1d6534d4af847aa94c37cfcc11f39abb2038c67b49ee558c9178643aacdac547419795884fe87c2853b84764bc83c1c94089ab9b8e9171095b01800b90bd1fecd5fe9f81b984e1823193247"}, {0x0, 0x7, {0x0, 0x1}}, {0x0, 0x8, {0x1, 0x2}}}}, @m_bpf={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS, @TCA_ACT_BPF_OPS_LEN, @TCA_ACT_BPF_OPS={0x0, 0x4, [{}, {}, {}, {}, {}, {}]}]}, {0x0, 0x6, "d4a1b0177987526d421555722f2b33a00cf4e440b78d80a2b6dc9fc0ee8f7eab3a8f64d631d09ee020f4d5a5f6c958e6d0577dfe59bd8edf2b30ae8c373897e42d8b5ce0ad0bf9d4"}, {0x0, 0x7, {0x1}}, {0x0, 0x8, {0x1, 0x1}}}}, @m_connmark={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS, @TCA_CONNMARK_PARMS]}, {0x0, 0x6, "357e55c8d11fc37316b5c890f2c5260971cd48bd4572494b551cb5a84d522c3a7cff2143d2bc99dbb83a300fc9f05f8c"}, {0x0, 0x7, {0x1}}, {0x0, 0x8, {0x1, 0x2}}}}, @m_mirred={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS, @TCA_MIRRED_PARMS, @TCA_MIRRED_PARMS, @TCA_MIRRED_PARMS, @TCA_MIRRED_PARMS]}, {0x0, 0x6, "e429537536772ddb55fc856055fe83d0b4b9c7038ce61e970ce9bc626896f6597b1f0d95a49b"}, {}, {0x0, 0x8, {0x1, 0x2}}}}, @m_ife={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0x0, 0x3, @broadcast}, @TCA_IFE_DMAC={0x0, 0x3, @random="e42f4a24bfd8"}]}, {0x0, 0x6, "3f96d8e0e4e426165d2d2bdad144e735babe6c27b77b211a0e5d3e145c75bdc82df3bef1308a9c2f1df4d9ff4bd68af3989432a38049d0b2a6cc43d78cd088b796ffa7e07b8c270ab4404f6679050ac700d0220f492ad182359d77514e8333b76c867045a8775ccf00563c8838881dcac0580d8891ea864db4cda38cd674d28813"}, {0x0, 0x7, {0x1, 0x1}}, {0x0, 0x8, {0x0, 0x3}}}}]}, {0x0, 0x1, [@m_tunnel_key={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x0, 0x3, @multicast1}, @TCA_TUNNEL_KEY_NO_CSUM, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x0, 0x3, @empty}, @TCA_TUNNEL_KEY_PARMS, @TCA_TUNNEL_KEY_ENC_DST_PORT, @TCA_TUNNEL_KEY_ENC_KEY_ID, @TCA_TUNNEL_KEY_ENC_DST_PORT]}, {0x0, 0x6, "7c9682c1a82229bbdbef684ab89cee6544447f12aca99ca80e6edd710effdaa5a9db63a0fe63fdf0ab19cb1a410b2fab05d0298a5a97f7eb71c2e7e37d9579c4ccf529cde7b0a48591862bac68201493466b3f145454f9f6dc211b1bd2bd82d200d78ef8b03c121f30334d5dfb185f08275a0c2602a8455d72e156c5f9e5272eb3165d88b466"}, {}, {0x0, 0x8, {0x2, 0x1}}}}, @m_skbedit={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING, @TCA_SKBEDIT_PRIORITY, @TCA_SKBEDIT_PTYPE]}, {0x0, 0x6, "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"}, {}, {0x0, 0x8, {0x1, 0x2}}}}, @m_skbedit={0x0, 0x0, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x35}, @TCA_SKBEDIT_MARK, @TCA_SKBEDIT_PARMS, @TCA_SKBEDIT_PRIORITY, @TCA_SKBEDIT_PTYPE]}, {0x0, 0x6, "abc14bfebf112ecea3ac15c5012181eeb7a0b6bd15d03b707ced5f8ba073c8f6a9a479311f95c654326031b3cc982385fa58ba389376d90717a824b4a91fff3e662e59b01f1cc7241dc9629cc4dcc05e8bb6a2f75d1a7abd1b5d81de96735c88727665098ef8b387ac3c4f545a449f77d754cdd77f645543516966034536c6a1318e86655af02c8bd792618f46a80e11e631b7751dbfc00d3ce26cf7f9f31148eb7d45610557de5cd40e851a93d3df720762f458de15062301df79ba7ff93ac0edcde3e41d6f840bfacbba953abf54fcfe0f4f1d"}, {0x0, 0x7, {0x1}}, {0x0, 0x8, {0x3, 0x3}}}}]}]}, 0x68}}, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000})
umount2(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f00000001c0)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000280)=""/74})
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f0000000480)={0x1, r4})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x63, &(0x7f0000000600)=""/99}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1)

1.783309541s ago: executing program 1 (id=1064):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x1}, 0x8)
r1 = socket$key(0xf, 0x3, 0x2)
dup3(r1, r0, 0xa000000)

1.732040593s ago: executing program 1 (id=1065):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='clear_refs\x00')
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x30}, 0x30)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x1fffe000000})

1.55864949s ago: executing program 4 (id=1066):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
socket$inet6(0xa, 0x0, 0x0) (async)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac14140000000000000000000000000000000000000000000a00800000", @ANYRESDEC], 0xb8}}, 0x0) (async, rerun: 64)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6) (rerun: 64)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0) (async)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000002c0)={0x6, {{0x2, 0x0, @multicast1}}}, 0xffe8) (async, rerun: 32)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, &(0x7f0000000680)={0x5, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @dev}}}, 0x108) (async, rerun: 32)
getsockopt$inet_buf(r2, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x24b)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x90)

1.479780153s ago: executing program 4 (id=1067):
socket$can_bcm(0x1d, 0x2, 0x2) (async)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10) (async)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) (async)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="4000000013000100"/20, @ANYRES32=0x0, @ANYBLOB="000000000000004bdbb066eb", @ANYRES32=0x0, @ANYBLOB="140003006272696467655f736c6176655f30000004001a80"], 0x40}}, 0x0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) (async)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (async)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @adiantum, 0x0, @desc2})
brk(0x0) (async)
brk(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000), 0x208e24b)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
preadv(r6, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
chdir(&(0x7f0000000000)='./file0\x00')
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000240)={'fscrypt:', @desc3}, &(0x7f00000002c0)={0x0, "615a091a55a8d4982a83b71b906769e737201ac6b7a7804454056569cbf3a5be811debc957b5831b89b59d703e748c7c00", 0x25}, 0x48, 0xffffffffffffffff)
creat(&(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="050000000808"], 0x80}}, 0x0)
socket$inet(0x2, 0x2, 0x1) (async)
r7 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r7, 0x0, 0xf, &(0x7f0000000000)=0x8f79, 0x4) (async)
setsockopt$inet_int(r7, 0x0, 0xf, &(0x7f0000000000)=0x8f79, 0x4)

880.164386ms ago: executing program 1 (id=1068):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000000)={&(0x7f0000000080)=""/108, 0x6c, 0x20, 0x7})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0xde34)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x9, 0x13, r0, 0x0)
userfaultfd(0x80001)
fadvise64(r0, 0x0, 0x3f00, 0x4)

879.471076ms ago: executing program 1 (id=1069):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x2008410, &(0x7f0000000400)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000000000000003b814e50a959736d65720f73ecea54b5e5be45aca9836c319f437199ff24212c651baef614d442ae89412ad3dcd0b7586d02002a6d6d65cacd4fc5002207ce994dda65c4b1d23a9bd5ba0f4ce5c2b525718c6aa918080002223d2753a5cac974110144cd0a1e368652324a41b31e1eb3b32dccbdf8f68bd96a45a75427a5f789d267fd92f6a5540200b81d5b9fa9b40fe4d7fbd50a6afc3a989c6d60045663c59cbdc4c700000000bc7f6b22df0191acf5912afdcc1c061835177068c40f757dd123d2600b1c544f1525aa8d00000000000000000000002e8b5c733d362417c17f527c0bfebec112d57fc69fabb9b31ef97b2147931ff60cdf666c25244218b1f1a6010000000100000020563b835d0e8e9a09070ef1691fcb2f37bda5d4e3d9d7a2d0ac82b45a53001057f321acc45d5e065a461de90100000077d200000000000040b78f0dd3836f5ab2f6a1a5b798bb7752f192c6b48e568973a59cd9c74bd9a14721856c5499cd8f93f8beaa9cf76718ce7244c84268030000000000000008886b313bd01a22d576e414011a4f0a897514329f86d4585fa0ea17068f8af349696da4a2b3e24310bb52ec51bc23b57897cb55a2d513e6a00765ee3f58b471c54dd57f0af584afe4a21f92b515e34ac8c454a30dd54a580ad7f2fa6fbb273ca0f751e684584320534667aea39ad7222c8ef531f514939177a47395e94c1723abb3fd44fd64fde4b45cc2f55f4ae05ff48648a4c998257856bcdcf2fa02010000001f54f3936570450e91c8d55abad76a7b7a000016f81ec9da9ccc1191c211632266d907e4d9b23496ae19bac24dc23c43f514f1b4af19988bbe61ee29a368a999435d6872d01b79c7821e875859dfbf3c57e4f1fb00010000f7a0fa13516c0926d19dd2d58633d97b4ca282e73ea142b01b4a742fa11c0927ba811dd60903d575db449d775021b542db617086b3ed42e6e60fe043cff79b0c067c584bbf82657974c3736912b4ab22052b9467d0da116ccc1652d861a420f09aaf67d3e9f6160100000001000000ae6335ad9896abd3cc00413638cb9bc62ab8054325d72e9144cf4f88702f586507e3147198e0bc4060a7c8f4dce73b653177ecf8228e6e6fae02510000000000000000000000000000f43739fdd2d24e50e0233acfe1c8639070fe00f40b0d01f8a0", @ANYRES32=0x0, @ANYRESHEX], 0x1, 0x5549, &(0x7f0000003d80)="$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")
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000280)=ANY=[], 0x8)
sendto$inet6(r0, &(0x7f0000000080)="b3019c28", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000140)=0x10001, 0x4)
recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffddb}}, {{&(0x7f0000000800)=@nl, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000180)=""/186, 0xba}, {0xffffffffffffffff}], 0x15, &(0x7f0000000280)=""/239, 0xef}}, {{&(0x7f0000000e80)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/106, 0x6e}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000000900)=""/246, 0xf5}], 0x5, &(0x7f0000000240)=""/27, 0x1b}, 0x80}, {{&(0x7f0000000880)=@nfc, 0x80, &(0x7f0000000c00), 0x0, &(0x7f0000000cc0)=""/180, 0xb4}}], 0x4, 0x10162, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chdir(0x0)
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x1fb978507dcbbbd6)
r2 = open(&(0x7f0000001840)='./bus\x00', 0x4a82, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x0)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
ioctl$UI_DEV_DESTROY(r3, 0x5502)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x3, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f00000005c0)}, 0x20)
syz_emit_ethernet(0x32, &(0x7f00000003c0)=ANY=[@ANYBLOB="0180c2000003000000000000080045000024000000000015"], 0x0)
syz_usb_connect(0x0, 0x10e, &(0x7f0000000380)=ANY=[@ANYBLOB="120100006a249f08ec1888323a3f010203010902fc0001870000000904e600030e01000006240600011005240008000d240f01000000000000a0010606241a0000000c241b000000000000ff01000424020c9024", @ANYRES16=r5], 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x20)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r7, 0x0, 0xee00)
write$binfmt_elf64(r2, 0x0, 0x78)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

611.943437ms ago: executing program 4 (id=1070):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fstatfs(r1, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) (async)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) (async)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
close(r2)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0) (async)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000540)={0x2c, &(0x7f0000000200)={0x0, 0x0, 0x5, {0x5, 0x0, "a8c6df"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) (async)
syz_usb_control_io(r4, &(0x7f0000000540)={0x2c, &(0x7f0000000200)={0x0, 0x0, 0x5, {0x5, 0x0, "a8c6df"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
r5 = syz_usb_connect$cdc_ncm(0x6, 0x96, &(0x7f0000000380)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x84, 0x2, 0x1, 0x1, 0x3fed492114e4bc64, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "be9cc28eff9a"}, {0x5, 0x24, 0x0, 0x41a}, {0xd, 0x24, 0xf, 0x1, 0x2, 0x5, 0x6, 0x80}, {0x6, 0x24, 0x1a, 0xffff, 0x29}, [@mbim_extended={0x8, 0x24, 0x1c, 0x8f, 0x24}, @network_terminal={0x7, 0x24, 0xa, 0x4, 0x0, 0x1, 0x4}, @mbim_extended={0x8, 0x24, 0x1c, 0x7, 0x73, 0x9}, @dmm={0x7, 0x24, 0x14, 0xfff8}, @acm={0x4, 0x24, 0x2, 0x5}]}, {{0x9, 0x5, 0x81, 0x3, 0x40, 0x0, 0x5, 0x5}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x0, 0x9, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x0, 0x0, 0x6}}}}}}}]}}, &(0x7f0000000840)={0x0, 0x0, 0xbd, &(0x7f0000000580)={0x5, 0xf, 0xbd, 0x3, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x7, 0x6, 0x7}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "5b394f0f003feac07a92f039c56d3df9"}, @generic={0x9d, 0x10, 0x0, "fe30049755fa081d6be2326b9e8b45038323a567fe60603a99368a9de7740243e6a071cc9a9c6e6c5fbb79a955ca32b9c237c8aca4637e4c53f44ef2701ea2d653619eaf8732ef876ad670664e3f1d68fc58aa42b51acae519efe60c5886abfb9994638b49304eb825955b664d18801ddd2f26b7891b2cec293344b7f93c9c5ed7821c8f1361b0da1aa9e639bf0a09d4cbdb62ac08e60fc17a8b"}]}, 0x5, [{0x4, &(0x7f0000000180)=@lang_id={0x4}}, {0x5f, &(0x7f00000002c0)=@string={0x5f, 0x3, "390f85fa34ab1718735ec820d1e2569e6d1f58ba17fbe34d5e23f3d00314b2c26089f6142c6c1ed37bd66d971fa79a585ca9fa1ff8ef44398d2e536b49ab3ed0ad6b584cb41ffcfc273624905d91f2f7975729f88caac6277611276e73"}}, {0x0, 0x0}, {0x0, 0x0}, {0x95, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"]}]})
syz_usb_control_io$cdc_ncm(r5, &(0x7f0000000980)={0x14, 0x0, &(0x7f0000000500)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000cc0)={0x44, &(0x7f0000000a40)={0x0, 0x1, 0xa2, "2ae675a48ae2a85bc66b7bef651fd10f982497f012c4d8132819882cb0d88f75e5c508c90268930095386fce392d591dcaf3e4ede8bda3c0921e382ce3ce3882ea95dbb676aadd879fd25f6836d697cf660807f91cb0716e6f8bc5a7e9ba19303dd08fa4b9260379fb3e0ecd55fc1e1122172a8f8b6e3ca396d37f004ad266eb19a92a8648a7915816d7476f22b4ffc13e81d25af17557aaf5b8f988789645c619f1"}, &(0x7f0000000b00)={0x0, 0xa, 0x1, 0x81}, &(0x7f0000000b40)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000b80)={0x20, 0x80, 0x1c, {0x0, 0xa6c, 0x243, 0x278, 0x3f, 0x2173, 0x8000, 0xd8bc, 0x7, 0x6, 0x80, 0x7fff}}, &(0x7f0000000bc0)={0x20, 0x85, 0x4}, &(0x7f0000000c00)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000c40)={0x20, 0x87, 0x2, 0x5}, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x1c5002, 0x0)
ftruncate(r9, 0x5d801)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x117ac0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x107042, 0x0) (async)
r10 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x107042, 0x0)
write(r10, &(0x7f0000000400)="6f88b2a60614ef91a3f8ef9e1220b2675bce0f59b2336b1e3eb222ffa77b91bd642da8472b07a5059831e5c03734ccff6480db993a9be5198f428be1838bef5847f8452dab06605676dc879a87d9c28bf128eb784296078f4a28e8a2595743bd65e4e6a9e5ced66e5524edc432ceaab8552a2c2f179d91122a961061343c8695c39084b2370dae938e8d43b6d6fbd905eff6c6360e26d2ef525c6a46357a0f26061ba8da82c8c39b6ec93cea456c8ed747b85fa822136714ad8bdb0d36d7c9c75354e5d73d216e45cb24fc975e092c08bd1bfb1102952f580acce4909b84036801c1f0b88c7508aa2bf5999b5f8b0da1b6d5a83203cf784ce1e8a562c75310eea1c28d9f650073742c8e9311718b35acee6a272bd76b7e547c06b9b9c461163e18f48033a79c7f3a6574c234d84fa9c569100e6c088070010175611c6643b7cd4eb643ab300fa1e46fb4027fe48882975fcfd5a5295ead29b97cb0e86af8a0b4beb400d3b54774eafac72f7d222a4248662afdd0072963aef817701d5fc445f61d563c3ed0992670002289a555f7bebfcc91b5c75e9222b17ed54aff16a3d6a0cfab24f8bffcaef7c61f2be13411eb800853f37dd2d0efc25abc246e833d350206539d5160991f02e4b0201f14ed8fdc814c4034ed7e438934b250352ece17f1145ba3ea72c698adfeeb89e4e1338fd7598d83f70137a83ef553d770193c4738", 0x353c00)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xf, &(0x7f0000001080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80000000}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001140)='GPL\x00', 0x7fff, 0xfd, &(0x7f0000001180)=""/253, 0x40f00, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001300)={0x1}, 0x8, 0x10, &(0x7f0000001340)={0x0, 0x7, 0x7, 0xff}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001380)=[{0x3, 0x5, 0xf, 0xa}], 0x10, 0x81}, 0x90) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xf, &(0x7f0000001080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80000000}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001140)='GPL\x00', 0x7fff, 0xfd, &(0x7f0000001180)=""/253, 0x40f00, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001300)={0x1}, 0x8, 0x10, &(0x7f0000001340)={0x0, 0x7, 0x7, 0xff}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001380)=[{0x3, 0x5, 0xf, 0xa}], 0x10, 0x81}, 0x90)

356.120326ms ago: executing program 2 (id=1071):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000000)={&(0x7f0000000080)=""/108, 0x6c, 0x20, 0x7})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0xde34)
read$rfkill(r0, &(0x7f0000000100), 0x8)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
fadvise64(r0, 0x0, 0x3f00, 0x4)

345.511937ms ago: executing program 2 (id=1072):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x4, 0x44, &(0x7f0000000540)=ANY=[@ANYBLOB="2909dbeac5d8034561d5ea3296acf3a339a27afb74dddd64c50c7a675beeaa0670c83ff20bc43c6b6709058b20e09b74aa7c7cf09e89228415721253f37119e902f9881bf18fcd3b61603071c8851ab8ba1de9fab9"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x27}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x1f2f, 0xe, 0x0, &(0x7f00000007c0)="9f44948721919580684010a405dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x1a, &(0x7f0000000740)=@mangle={'mangle\x00', 0x64, 0x6, 0x6f0, 0x2e0, 0x2e0, 0x2e0, 0x538, 0x2e0, 0x620, 0x620, 0x620, 0x620, 0x620, 0x6, 0x0, {[{{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:devicekit_exec_t:s0\x00'}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@mcast1}}}, {{@ipv6={@mcast2, @loopback, [], [], 'ip6gretap0\x00', 'syzkaller0\x00'}, 0x0, 0x120, 0x168, 0x0, {}, [@common=@ipv6header={{0x28}}, @common=@inet=@set4={{0x50}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@local, @ipv6=@private1}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@empty, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x750)

81.755307ms ago: executing program 3 (id=1073):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000000)={[{@test_dummy_encryption}, {@stripe={'stripe', 0x3d, 0x10000}}, {@dioread_nolock}]}, 0x1, 0x3f0, &(0x7f00000008c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x43400)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x100000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount$tmpfs(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000001440), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
unshare(0x60600)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
unshare(0x20020000)
chdir(&(0x7f0000000180)='./file0\x00')
unlink(&(0x7f0000000140)='./cgroup\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$PTRACE_GETSIGMASK(0x420a, r3, 0x8, &(0x7f0000000280))
r4 = openat$cgroup(r1, &(0x7f00000001c0)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f00000000c0)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r5, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
io_setup(0x6, &(0x7f0000000180))
lseek(r5, 0x0, 0x4)
waitid(0x3, r3, &(0x7f00000002c0), 0x40000009, &(0x7f0000000480))
truncate(&(0x7f0000000080)='./file0\x00', 0x9)
ioctl$KVM_CAP_HALT_POLL(r0, 0x4068aea3, &(0x7f0000000100))

0s ago: executing program 3 (id=1074):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x1200400, &(0x7f0000000380), 0xfa, 0x54d, &(0x7f0000000980)="$eJzs3d9rW1UcAPDvTdv96nQdjKE+SGEPTubStfXHBB/mo+hwoO8ztHdlNFlGk461Dtwe3IsvMgQRB+If4LuPw3/Av2KggyGj6IMvkZvedNmatFmXrZn5fOC259x703NPzv2enpOTkACG1mT2oxDxakR8m0Qcajs2GvnByfXz1h5cm8u2JBqNz/5KIsn3tc5P8t/jeeaViPjt64gThc3l1lZWF0vlcrqU56fqlctTtZXVkxcrpYV0Ib00Mzt7+p3Zmfffe7dvdX3z3D8/fHrno9PfHFv7/pd7h28lcSYO5sfa6/EUrrdnJmMyf07G4sxjJ073obBBkuz2BbAjI3mcj0XWBxyKkTzqgf+/ryKiAQypRPzDkGqNA1pz+z7Ng18Y9z9cnwBtrv/o+msjsa85NzqwljwyM8rmuxN9KD8r49c/b9/Ktujf6xAA27p+IyJOjY5u7v+SvP/buVM9nPN4Gfo/eH7uZOOftzqNfwob45/oMP4Z7xC7O7F9/Bfu9aGYrrLx3wcdx78bi1YTI3nupeaYbyy5cLGcZn3byxFxPMb2Zvmt1nNOr91tdDvWPv7Ltqz81lgwv457o3sffcx8qV56mjq3u38j4rWO499ko/2TDu2fPR/neizjaHr79W7Htq//s9X4OeKNju3/cEUr2Xp9cqp5P0y17orN/r559Pdu5e92/bP2P7B1/SeS9vXa2pOX8dO+f9Nux3Z6/+9JPm+m9+T7rpbq9aXpiD3JJ5v3zzx8bCvfOj+r//FjW/d/ne7//RHxRY/1v3nkZtdTB6H955+o/Z88cffjL3/sVn5v7f92M3U839NL/9frBT7NcwcAAAAAAACDphARByMpFDfShUKxuP7+jiNxoFCu1uonLlSXL81H87OyEzFWaK10j7e9H2I6fz9sKz/zWH42Ig5HxHcj+5v54ly1PL/blQcAAAAAAAAAAAAAAAAAAIABMd7l8/+ZP0Z2++qAZ85XfsPw2jb++/FNT8BA8v8fhpf4h+El/mF4iX8YXuIfhpf4h+El/mF4iX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoq3Nnz2ZbY+3BtbksP39lZXmxeuXkfFpbLFaW54pz1aXLxYVqdaGcFueqle3+XrlavTw9E8tXp+pprT5VW1k9X6kuX6qfv1gpLaTn07HnUisAAAAAAAAAAAAAAAAAAAB4sdRWVhdL5XK6JCGxo8ToYFyGRJ8Tu90zAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBD/wUAAP//y284sw==")
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0xffffffffffffffa1)

kernel console output (not intermixed with test programs):

.154593][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.166646][  T705] device bridge_slave_1 left promiscuous mode
[   64.172654][  T705] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.183326][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   64.192417][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.203369][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   64.512973][  T705] device bridge_slave_0 left promiscuous mode
[   64.532061][  T705] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.766586][ T1713] netlink: 24 bytes leftover after parsing attributes in process `syz.0.337'.
[   64.897725][ T1739] Zero length message leads to an empty skb
[   64.930601][   T23] audit: type=1400 audit(1719834993.421:380): avc:  denied  { execute } for  pid=1738 comm="syz.0.344" path=2F6D656D66643AF365099F9138C07901631F6E7578202864656C6574656429 dev="tmpfs" ino=20646 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   64.966825][  T107] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[   64.978296][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   64.988028][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   65.000498][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   65.015152][ T1742] netlink: 4 bytes leftover after parsing attributes in process `syz.4.345'.
[   65.026855][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   65.034726][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   65.086249][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   65.124686][ T1742] netlink: 4 bytes leftover after parsing attributes in process `syz.4.345'.
[   65.139772][ T1756] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9876 sclass=netlink_route_socket pid=1756 comm=syz.0.348
[   65.159913][ T1758] binder: BINDER_SET_CONTEXT_MGR already set
[   65.165742][ T1758] binder: 1757:1758 ioctl 4018620d 20000040 returned -16
[   65.177936][   T23] audit: type=1400 audit(1719834993.701:381): avc:  denied  { listen } for  pid=1741 comm="syz.4.345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   65.505542][ T1768] EXT4-fs (loop4): 1 orphan inode deleted
[   65.512046][ T1768] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   65.531293][ T1768] ext4 filesystem being mounted at /root/syzkaller.7sEto0/14/file1 supports timestamps until 2038 (0x7fffffff)
[   65.548298][ T1773] fuse: Unknown parameter ''
[   65.553885][   T23] audit: type=1400 audit(1719834994.071:382): avc:  denied  { execute } for  pid=1767 comm="syz.4.351" path="/root/syzkaller.7sEto0/14/file1/bus" dev="devtmpfs" ino=9194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   65.555268][ T1768] EXT4-fs error (device loop4): __ext4_get_inode_loc:4710: comm syz.4.351: Invalid inode table block 133 in block_group 0
[   65.595089][ T1768] EXT4-fs (loop4): Remounting filesystem read-only
[   65.670078][ T1525] EXT4-fs error (device loop4): __ext4_get_inode_loc:4710: comm syz-executor: Invalid inode table block 133 in block_group 0
[   65.686275][ T1525] EXT4-fs error (device loop4): __ext4_get_inode_loc:4710: comm syz-executor: Invalid inode table block 133 in block_group 0
[   65.760363][ T1778] overlayfs: failed to resolve './file1': -2
[   65.796660][  T107] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   65.805572][  T107] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.813805][  T107] usb 2-1: Product: syz
[   65.818358][  T107] usb 2-1: Manufacturer: syz
[   65.822859][  T107] usb 2-1: SerialNumber: syz
[   66.289164][ T1783] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.298213][ T1783] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.309523][ T1783] device bridge_slave_0 entered promiscuous mode
[   66.317467][ T1783] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.324546][ T1783] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.332052][ T1783] device bridge_slave_1 entered promiscuous mode
[   66.417944][ T1783] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.424808][ T1783] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.431936][ T1783] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.438794][ T1783] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.478126][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   66.486161][  T107] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.493400][  T107] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.511255][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   66.519908][ T1190] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.526782][ T1190] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.534834][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   66.543068][ T1190] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.550199][ T1190] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.569621][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   66.577856][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   66.600713][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   66.617000][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   66.628351][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   66.636716][  T705] device bridge_slave_1 left promiscuous mode
[   66.642668][  T705] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.650001][  T705] device bridge_slave_0 left promiscuous mode
[   66.655019][ T1794] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1794 comm=syz.0.360
[   66.656124][  T705] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.738267][ T1190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   66.760924][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   66.803301][ T1804] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   66.996016][ T1816] netlink: 24 bytes leftover after parsing attributes in process `syz.4.365'.
[   67.215287][ T1824] overlayfs: failed to resolve './file1': -2
[   67.261039][   T23] audit: type=1400 audit(1719834995.782:383): avc:  denied  { bind } for  pid=1827 comm="syz.2.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   67.323363][   T23] audit: type=1400 audit(1719834995.842:384): avc:  denied  { read } for  pid=1852 comm="syz.2.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   67.347213][ T1819] F2FS-fs (loop4): Invalid log sectorsize (2)
[   67.353879][ T1819] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   67.383968][ T1814] F2FS-fs (loop3): Found nat_bits in checkpoint
[   67.393651][ T1819] F2FS-fs (loop4): Found nat_bits in checkpoint
[   67.491659][ T1819] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   67.500104][ T1814] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   67.525259][ T1819] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   67.530083][  T972] usb 2-1: USB disconnect, device number 11
[   67.704471][ T1640] attempt to access beyond end of device
[   67.704471][ T1640] loop3: rw=2049, want=45104, limit=40427
[   67.832039][ T1874] mmap: syz.1.378 (1874) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   67.911725][ T1874] EXT4-fs warning (device sda1): verify_group_input:147: Cannot add at group 49 (only 8 groups)
[   68.126534][ T1887] EXT4-fs (loop4): Ignoring removed nobh option
[   68.346137][ T1887] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,stripe=0x0000000000010000,dioread_nolock,,errors=continue
[   68.388827][   T23] audit: type=1400 audit(1719834996.883:385): avc:  denied  { mount } for  pid=1900 comm="syz.3.383" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   68.410500][   T23] audit: type=1400 audit(1719834996.883:386): avc:  denied  { mounton } for  pid=1900 comm="syz.3.383" path="/root/syzkaller.njRQQc/8/file0" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[   68.434556][   T23] audit: type=1400 audit(1719834996.883:387): avc:  denied  { remount } for  pid=1900 comm="syz.3.383" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   68.612362][   T23] audit: type=1326 audit(1719834997.123:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1910 comm="syz.2.386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f120abceb99 code=0x0
[   68.644883][  T107] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[   68.653280][   T23] audit: type=1400 audit(1719834997.163:389): avc:  denied  { unmount } for  pid=1640 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   68.712251][ T1915] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=1915 comm=syz.1.388
[   68.735357][   T23] audit: type=1400 audit(1719834997.223:390): avc:  denied  { create } for  pid=1914 comm="syz.1.388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   68.748579][ T1916] overlayfs: failed to clone upperpath
[   68.775625][   T23] audit: type=1400 audit(1719834997.223:391): avc:  denied  { write } for  pid=1914 comm="syz.1.388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   68.800427][   T23] audit: type=1400 audit(1719834997.243:392): avc:  denied  { read } for  pid=1914 comm="syz.1.388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   68.884759][  T107] usb 5-1: Using ep0 maxpacket: 16
[   69.014750][  T107] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[   69.032480][ T1913] F2FS-fs (loop3): Invalid log sectorsize (2)
[   69.039196][  T107] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[   69.048472][ T1913] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   69.054662][  T972] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[   69.057867][  T107] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.094198][  T107] usb 5-1: config 0 descriptor??
[   69.100492][ T1913] F2FS-fs (loop3): Found nat_bits in checkpoint
[   69.140987][ T1913] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   69.147864][ T1913] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   69.358932][ T1937] tipc: Enabling <eth:lo> not permitted
[   69.362318][  T745] print_req_error: 70 callbacks suppressed
[   69.362330][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   69.384045][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   69.395806][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.406859][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.419463][  T972] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   69.430287][   T23] audit: type=1400 audit(1719834997.933:393): avc:  denied  { connect } for  pid=1934 comm="syz.0.394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   69.450091][  T428] buffer_io_error: 50 callbacks suppressed
[   69.450099][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.462508][ T1937] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[   69.466506][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   69.473455][   T23] audit: type=1400 audit(1719834997.933:394): avc:  denied  { ioctl } for  pid=1934 comm="syz.0.394" path="socket:[20165]" dev="sockfs" ino=20165 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   69.482721][  T972] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   69.506855][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.524331][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.527168][  T972] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[   69.533932][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.542414][  T972] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.551994][ T1887] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   69.563684][  T972] usb 2-1: config 0 descriptor??
[   69.570723][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.579567][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.588176][ T1943] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=20183
[   69.592722][  T107] hid (null): unknown global tag 0xa5
[   69.599842][ T1943] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=20183
[   69.604607][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.621763][  T107] hid (null): unknown global tag 0xd
[   69.626699][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.627152][  T107] hid (null): unknown global tag 0xc
[   69.642972][ T1943] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   69.644092][  T107] hid-generic 0003:0158:0100.0008: unknown main item tag 0x1
[   69.656489][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.661150][  T107] hid-generic 0003:0158:0100.0008: unexpected long global item
[   69.680834][ T1943] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,sysvgroups,norecovery,grpid,norecovery,,errors=continue
[   69.694327][  T107] hid-generic: probe of 0003:0158:0100.0008 failed with error -22
[   69.698306][ T1947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.397'.
[   69.753846][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   69.753912][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   69.765343][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.777862][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   69.785844][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.800866][  T107] usb 5-1: USB disconnect, device number 15
[   69.801772][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   69.810222][ T1950] overlayfs: failed to resolve './file1': -2
[   69.900229][ T1952] cgroup1: Unknown subsys name 'fsuuid'
[   70.055223][  T972] hid-generic 0003:1B1C:1B02.0009: unbalanced collection at end of report description
[   70.065105][  T972] hid-generic: probe of 0003:1B1C:1B02.0009 failed with error -22
[   70.085255][ T1956] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   70.092995][ T1956] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   70.106039][ T1956] F2FS-fs (loop3): invalid crc value
[   70.174383][ T1956] F2FS-fs (loop3): Found nat_bits in checkpoint
[   70.229201][ T1956] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   70.236258][ T1956] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   70.439412][ T1989] overlayfs: unrecognized mount option "dont_appraise" or missing value
[   70.834827][  T705] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   70.843590][  T705] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   70.860332][ T1994] overlayfs: failed to resolve './file1': -2
[   71.367247][ T2042] 9pnet: Insufficient options for proto=fd
[   71.464770][ T2042] EXT4-fs error (device loop4): ext4_orphan_get:1260: comm syz.4.430: bad orphan inode 8192
[   71.493516][  T973] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   71.501294][ T2042] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   71.644465][ T2057] EXT4-fs (loop4): Test dummy encryption mode enabled
[   71.704808][ T2057] EXT4-fs error (device loop4): ext4_quota_enable:6056: comm syz.4.433: inode #16777216: comm syz.4.433: iget: illegal inode #
[   71.733340][  T973] usb 4-1: Using ep0 maxpacket: 16
[   71.738840][ T2057] EXT4-fs error (device loop4): ext4_quota_enable:6059: comm syz.4.433: Bad quota inode: 16777216, type: 2
[   71.750646][ T2064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.437'.
[   71.759537][ T2057] EXT4-fs warning (device loop4): ext4_enable_quotas:6100: Failed to enable quota tracking (type=2, err=-117, ino=16777216). Please run e2fsck to fix.
[   71.774979][ T2065] netlink: 8 bytes leftover after parsing attributes in process `syz.0.437'.
[   71.783917][ T2057] EXT4-fs (loop4): mount failed
[   71.914908][ T2079] syz.2.432[2079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.915172][ T2079] syz.2.432[2079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.023452][ T2081] fuse: Unknown parameter 'f'
[   72.096798][ T2057] erofs: (device loop4): mounted with opts: , root inode @ nid 36.
[   72.203281][  T973] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[   72.218124][  T973] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.226126][  T973] usb 4-1: Product: syz
[   72.230087][  T973] usb 4-1: Manufacturer: syz
[   72.234530][  T973] usb 4-1: SerialNumber: syz
[   72.283034][    C1] bridge0: port 3(erspan0) entered forwarding state
[   72.289440][    C1] bridge0: topology change detected, propagating
[   72.295687][    C1] bridge0: port 4(syz_tun) entered forwarding state
[   72.302017][    C1] bridge0: topology change detected, propagating
[   72.459454][  T973] usb 4-1: config 0 descriptor??
[   72.474731][  T107] usb 2-1: USB disconnect, device number 12
[   72.531611][  T973] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[   72.539525][  T973] usb 4-1: Detected FT232H
[   72.763129][  T973] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[   72.838080][ T2109] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[   72.868620][ T2109] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodiscard,acl,auto_da_alloc=0x0000000000000002,nobarrier,noinit_itable,nomblk_io_submit,init_itable=0x0000000000080009,usrquota,errors=continue,,errors=continue
[   73.243211][ T2014] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   73.280755][  T973] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[   73.288270][  T973] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   73.299441][  T973] usb 4-1: USB disconnect, device number 11
[   73.302653][  T107] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   73.313938][  T973] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   73.323333][  T973] ftdi_sio 4-1:0.0: device disconnected
[   73.639680][   T23] kauditd_printk_skb: 8 callbacks suppressed
[   73.639698][   T23] audit: type=1400 audit(1719835002.105:403): avc:  denied  { read } for  pid=2154 comm="syz.4.465" name="rtc0" dev="devtmpfs" ino=845 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.678552][   T23] audit: type=1400 audit(1719835002.105:404): avc:  denied  { open } for  pid=2154 comm="syz.4.465" path="/dev/rtc0" dev="devtmpfs" ino=845 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.702374][   T23] audit: type=1400 audit(1719835002.156:405): avc:  denied  { ioctl } for  pid=2154 comm="syz.4.465" path="/dev/rtc0" dev="devtmpfs" ino=845 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.744108][ T2161] netlink: 44 bytes leftover after parsing attributes in process `½“©'.
[   73.813720][  T107] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   73.824269][  T107] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.835226][  T107] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.845121][  T107] usb 2-1: New USB device found, idVendor=056e, idProduct=00fb, bcdDevice= 0.00
[   73.853985][  T107] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.862694][  T107] usb 2-1: config 0 descriptor??
[   74.454832][   T23] audit: type=1400 audit(1719835002.976:406): avc:  denied  { read write } for  pid=2178 comm="syz.4.472" name="vga_arbiter" dev="devtmpfs" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   74.479683][   T23] audit: type=1400 audit(1719835002.976:407): avc:  denied  { open } for  pid=2178 comm="syz.4.472" path="/dev/vga_arbiter" dev="devtmpfs" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   75.190159][  T745] print_req_error: 61 callbacks suppressed
[   75.190180][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   75.251934][ T2190] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   75.268194][ T2190] ext4 filesystem being mounted at /root/syzkaller.njRQQc/18/file0 supports timestamps until 2038 (0x7fffffff)
[   75.278001][ T2202] netlink: 12 bytes leftover after parsing attributes in process `syz.2.480'.
[   75.289349][ T2132] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   75.386531][ T2206] overlayfs: failed to clone upperpath
[   75.531640][ T2214] device ipip0 entered promiscuous mode
[   76.308496][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   76.325730][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   76.388268][   T23] audit: type=1400 audit(1719835004.907:408): avc:  denied  { bind } for  pid=2224 comm="syz.2.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   76.436591][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.473132][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.804843][  T745] buffer_io_error: 44 callbacks suppressed
[   76.804899][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   76.882654][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   76.886227][   T23] audit: type=1400 audit(1719835005.407:409): avc:  denied  { nlmsg_read } for  pid=2227 comm="syz.4.490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   76.890779][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.921927][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   76.929801][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.930567][ T2228] device syzkaller0 entered promiscuous mode
[   76.940416][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   76.954961][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.971329][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   76.980930][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.991684][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   77.014378][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   77.030053][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   77.042972][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   77.051369][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   77.062467][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   77.377750][  T107] usb 2-1: USB disconnect, device number 13
[   77.395672][ T2252] netlink: 4 bytes leftover after parsing attributes in process `syz.2.497'.
[   78.088551][   T23] audit: type=1400 audit(1719835006.608:410): avc:  denied  { create } for  pid=2232 comm="syz.0.492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   78.551539][   T23] audit: type=1400 audit(1719835007.078:411): avc:  denied  { append } for  pid=2265 comm="syz.4.502" name="loop4" dev="devtmpfs" ino=9194 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   78.581354][ T2274] EXT4-fs (loop3): barriers disabled
[   78.600652][ T2274] JBD2: no valid journal superblock found
[   78.610086][ T2274] EXT4-fs (loop3): error loading journal
[   78.731448][ T2266]  loop4: p2 p3 p4
[   78.741021][ T2266] loop4: p2 start 452985600 is beyond EOD, truncated
[   78.747738][ T2266] loop4: p3 start 4177527808 is beyond EOD, truncated
[   78.755176][ T2266] loop4: p4 size 3599499392 extends beyond EOD, truncated
[   78.831743][  T162]  loop4: p2 p3 p4
[   78.835674][  T162] loop4: p2 start 452985600 is beyond EOD, truncated
[   78.844845][  T162] loop4: p3 start 4177527808 is beyond EOD, truncated
[   78.852459][   T23] audit: type=1400 audit(1719835007.378:412): avc:  denied  { write } for  pid=2285 comm="syz.3.506" name="fd" dev="proc" ino=22093 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[   78.859768][  T162] loop4: p4 size 3599499392 extends beyond EOD, truncated
[   78.904980][   T23] audit: type=1400 audit(1719835007.378:413): avc:  denied  { add_name } for  pid=2285 comm="syz.3.506" name="3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[   78.962747][   T23] audit: type=1400 audit(1719835007.378:414): avc:  denied  { create } for  pid=2285 comm="syz.3.506" name="3" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[   79.019708][   T23] audit: type=1400 audit(1719835007.378:415): avc:  denied  { associate } for  pid=2285 comm="syz.3.506" name="3" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   79.120457][  T428] udevd[428]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   79.161204][ T2308] FAULT_INJECTION: forcing a failure.
[   79.161204][ T2308] name failslab, interval 1, probability 0, space 0, times 0
[   79.173600][ T2308] CPU: 0 PID: 2308 Comm: syz.4.511 Not tainted 5.4.276-syzkaller-00020-g4275fce9fe94 #0
[   79.183143][ T2308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   79.193032][ T2308] Call Trace:
[   79.196168][ T2308]  dump_stack+0x1d8/0x241
[   79.200333][ T2308]  ? panic+0x89d/0x89d
[   79.204239][ T2308]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   79.209878][ T2308]  ? unwind_next_frame+0x176a/0x1ea0
[   79.214989][ T2308]  ? get_reg+0x105/0x220
[   79.219074][ T2308]  should_fail+0x71f/0x880
[   79.223324][ T2308]  ? setup_fault_attr+0x3d0/0x3d0
[   79.228185][ T2308]  ? unwind_next_frame+0x176a/0x1ea0
[   79.233303][ T2308]  ? __tty_buffer_request_room+0x1ef/0x500
[   79.238950][ T2308]  should_failslab+0x5/0x20
[   79.243284][ T2308]  __kmalloc+0x51/0x2e0
[   79.247280][ T2308]  __tty_buffer_request_room+0x1ef/0x500
[   79.252746][ T2308]  __tty_insert_flip_char+0x3d/0x1f0
[   79.257870][ T2308]  k_pad+0x288/0xae0
[   79.261609][ T2308]  kbd_event+0x255d/0x3800
[   79.265861][ T2308]  ? memcpy+0x38/0x50
[   79.269671][ T2308]  ? blake2s_update+0x197/0x270
[   79.274368][ T2308]  ? __unwind_start+0x630/0x890
[   79.279046][ T2308]  ? kbd_led_trigger_activate+0x140/0x140
[   79.284600][ T2308]  ? is_bpf_text_address+0x24c/0x260
[   79.289720][ T2308]  ? stack_trace_save+0x1c0/0x1c0
[   79.294579][ T2308]  ? kbd_led_trigger_activate+0x140/0x140
[   79.300136][ T2308]  input_pass_values+0x8c9/0x1070
[   79.304997][ T2308]  ? _raw_spin_lock+0x1b0/0x1b0
[   79.309683][ T2308]  input_handle_event+0xbd0/0x1580
[   79.314641][ T2308]  ? asan.module_dtor+0x20/0x20
[   79.319317][ T2308]  input_inject_event+0x126/0x150
[   79.324177][ T2308]  evdev_write+0x660/0x7a0
[   79.328430][ T2308]  ? evdev_read+0xde0/0xde0
[   79.332771][ T2308]  ? evdev_read+0xde0/0xde0
[   79.337108][ T2308]  __vfs_write+0x103/0x750
[   79.341365][ T2308]  ? __kernel_write+0x350/0x350
[   79.346045][ T2308]  ? __fget+0x407/0x490
[   79.350038][ T2308]  ? avc_policy_seqno+0x17/0x70
[   79.354728][ T2308]  ? selinux_file_permission+0x2be/0x530
[   79.360194][ T2308]  ? security_file_permission+0x117/0x2f0
[   79.365750][ T2308]  vfs_write+0x206/0x4e0
[   79.369828][ T2308]  ksys_write+0x199/0x2c0
[   79.373996][ T2308]  ? debug_smp_processor_id+0x20/0x20
[   79.379290][ T2308]  ? __ia32_sys_read+0x80/0x80
[   79.383975][ T2308]  ? __do_page_fault+0x725/0xbb0
[   79.388747][ T2308]  do_syscall_64+0xca/0x1c0
[   79.393092][ T2308]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   79.398914][ T2308] RIP: 0033:0x7f33ff9c1b99
[   79.403184][ T2308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.422683][ T2308] RSP: 002b:00007f33fec43048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   79.430925][ T2308] RAX: ffffffffffffffda RBX: 00007f33ffb4ffa0 RCX: 00007f33ff9c1b99
[   79.438734][ T2308] RDX: 0000000000002778 RSI: 0000000020000040 RDI: 0000000000000006
[   79.446549][ T2308] RBP: 00007f33fec430a0 R08: 0000000000000000 R09: 0000000000000000
[   79.454362][ T2308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.462256][ T2308] R13: 000000000000000b R14: 00007f33ffb4ffa0 R15: 00007ffc41026a58
[   79.499374][   T23] audit: type=1400 audit(1719835008.018:416): avc:  denied  { map } for  pid=2318 comm="syz.4.520" path="socket:[23266]" dev="sockfs" ino=23266 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   79.539229][   T23] audit: type=1400 audit(1719835008.058:417): avc:  denied  { mount } for  pid=2320 comm="syz.2.519" name="/" dev="tmpfs" ino=22188 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   79.567523][ T2321] overlayfs: failed to clone upperpath
[   79.574390][ T2321] SELinux:  Context system_u:object_r:devicekit_disk_exec_t:s0 is not valid (left unmapped).
[   79.593368][ T2321] 9pnet_virtio: no channels available for device syz
[   79.601149][   T23] audit: type=1400 audit(1719835008.118:418): avc:  denied  { relabelto } for  pid=2320 comm="syz.2.519" name="file1" dev="sda1" ino=2001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:devicekit_disk_exec_t:s0"
[   79.628065][  T973] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[   79.701856][ T2338] overlayfs: failed to clone upperpath
[   80.139166][  T973] usb 4-1: Using ep0 maxpacket: 32
[   80.259720][  T973] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.272341][  T973] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.282028][  T973] usb 4-1: New USB device found, idVendor=056a, idProduct=0318, bcdDevice= 0.00
[   80.290976][  T973] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.300063][  T973] usb 4-1: config 0 descriptor??
[   80.657497][ T2360] capability: warning: `syz.1.531' uses deprecated v2 capabilities in a way that may be insecure
[   80.709803][ T2372] overlayfs: failed to clone upperpath
[   80.716833][ T2372] 9pnet_virtio: no channels available for device syz
[   80.728399][   T23] audit: type=1400 audit(1719835009.209:419): avc:  denied  { setopt } for  pid=2367 comm="syz.4.535" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   80.790226][ T2376] netlink: 24 bytes leftover after parsing attributes in process `syz.2.538'.
[   80.938773][  T358] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   80.946180][   T23] audit: type=1400 audit(1719835009.469:420): avc:  denied  { getopt } for  pid=2383 comm="syz.4.539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   81.175274][  T107] usb 4-1: USB disconnect, device number 12
[   81.208576][  T358] usb 2-1: Using ep0 maxpacket: 8
[   81.328593][  T358] usb 2-1: config 0 has an invalid interface number: 171 but max is 0
[   81.336721][  T358] usb 2-1: config 0 has no interface number 0
[   81.342656][  T358] usb 2-1: too many endpoints for config 0 interface 171 altsetting 190: 149, using maximum allowed: 30
[   81.357163][  T358] usb 2-1: config 0 interface 171 altsetting 190 has 0 endpoint descriptors, different from the interface descriptor's value: 149
[   81.360790][ T2391] F2FS-fs (loop4): Unrecognized mount option "ba¿†\*ckground_gc=sync" or missing value
[   81.370798][  T358] usb 2-1: config 0 interface 171 has no altsetting 0
[   81.388033][  T358] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   81.397040][  T358] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.405436][  T358] usb 2-1: config 0 descriptor??
[   81.490887][   T23] audit: type=1400 audit(1719835010.019:421): avc:  denied  { create } for  pid=2388 comm="syz.4.544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   81.555340][ T2412] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=2412 comm=syz.4.547
[   81.626222][ T2427] netlink: 24 bytes leftover after parsing attributes in process `syz.4.551'.
[   81.708602][  T428] print_req_error: 88 callbacks suppressed
[   81.708616][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   81.771327][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   81.778430][  T358] usb 2-1: string descriptor 0 read error: -71
[   81.802538][ T2435] overlayfs: failed to clone upperpath
[   81.818762][  T358] asix 2-1:0.171 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[   81.839131][ T2432] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   81.848030][  T358] asix: probe of 2-1:0.171 failed with error -71
[   81.855239][ T2432] ext4 filesystem being mounted at /root/syzkaller.njRQQc/29/file0 supports timestamps until 2038 (0x7fffffff)
[   81.868292][  T358] usb 2-1: USB disconnect, device number 14
[   81.927028][ T2432] overlayfs: missing 'workdir'
[   82.100479][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   82.101146][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   82.123483][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.130796][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.141208][  T745] buffer_io_error: 65 callbacks suppressed
[   82.141216][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   82.156450][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.168512][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.264144][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.273988][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.286275][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.295873][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.308077][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.316189][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.327583][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.331072][ T2453] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=11 sclass=netlink_route_socket pid=2453 comm=syz.2.559
[   82.364792][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   82.364989][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.390458][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.399684][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   82.468068][  T972] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[   82.787851][  T972] usb 4-1: device descriptor read/64, error 18
[   82.954113][ T2474] fscrypt (sda1, inode 2000): Mutually exclusive encryption flags (0x0c)
[   83.177822][  T972] usb 4-1: device descriptor read/64, error 18
[   83.248663][ T2498] overlayfs: failed to resolve './file0': -2
[   83.448584][ T2511] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370
[   83.507595][  T972] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[   83.807309][  T972] usb 4-1: device descriptor read/64, error 18
[   83.935771][ T2525] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   83.946353][ T2525] EXT4-fs (loop4): orphan cleanup on readonly fs
[   84.388605][ T2531] overlayfs: failed to clone upperpath
[   84.422039][ T2525] EXT4-fs warning (device loop4): ext4_enable_quotas:6100: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   84.437566][ T2525] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   84.446319][ T2525] EXT4-fs error (device loop4): ext4_validate_block_bitmap:418: comm syz.4.584: bg 0: block 40: padding at end of block bitmap is not set
[   84.462395][ T2525] EXT4-fs error (device loop4) in ext4_free_blocks:5019: Corrupt filesystem
[   84.471851][ T2525] EXT4-fs (loop4): 1 truncate cleaned up
[   84.477573][ T2525] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   84.496018][ T2525] EXT4-fs error (device loop4): ext4_xattr_block_get:544: inode #16: comm syz.4.584: corrupted xattr block 31
[   84.507838][ T2525] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=16
[   84.534463][ T2525] EXT4-fs error (device loop4): ext4_xattr_block_get:544: inode #16: comm syz.4.584: corrupted xattr block 31
[   84.549453][ T2525] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=16
[   84.558778][   T23] kauditd_printk_skb: 5 callbacks suppressed
[   84.558786][   T23] audit: type=1400 audit(1719835013.091:427): avc:  denied  { read } for  pid=2524 comm="syz.4.584" name="file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[   84.642789][ T2549] netlink: 24 bytes leftover after parsing attributes in process `syz.0.591'.
[   84.678318][  T972] usb 4-1: device descriptor read/64, error 18
[   84.960702][ T2552] overlayfs: failed to resolve './file0': -2
[   84.982603][ T2555] overlayfs: failed to clone upperpath
[   85.015267][   T23] audit: type=1400 audit(1719835013.541:428): avc:  denied  { bind } for  pid=2563 comm="syz.1.596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   85.042380][   T23] audit: type=1400 audit(1719835013.561:429): avc:  denied  { listen } for  pid=2563 comm="syz.1.596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   85.067112][  T972] usb usb4-port1: attempt power cycle
[   85.130341][   T23] audit: type=1400 audit(1719835013.561:430): avc:  denied  { accept } for  pid=2563 comm="syz.1.596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   85.169984][ T2573] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2573 comm=syz.3.600
[   85.796481][  T972] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[   86.006353][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   86.036241][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.086258][  T972] usb 4-1: New USB device found, idVendor=ffff, idProduct=ffff, bcdDevice= 0.00
[   86.121530][  T972] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.180332][  T972] usb 4-1: config 0 descriptor??
[   86.465699][ T2580] overlayfs: failed to clone upperpath
[   86.644231][ T2577] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   86.696875][ T2583] overlayfs: failed to clone upperpath
[   86.915949][  T972] usb 4-1: string descriptor 0 read error: -71
[   87.145953][  T972] usbhid 4-1:0.0: can't add hid device: -71
[   87.187549][  T972] usbhid: probe of 4-1:0.0 failed with error -71
[   87.229385][  T745] print_req_error: 32 callbacks suppressed
[   87.229397][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   87.246613][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   87.263043][  T972] usb 4-1: USB disconnect, device number 15
[   87.286979][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   87.292426][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   87.310086][  T745] buffer_io_error: 20 callbacks suppressed
[   87.310095][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   87.348307][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   87.380870][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   87.426565][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   87.459149][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   87.519019][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   87.543096][ T2600] overlayfs: failed to clone upperpath
[   87.570986][   T23] audit: type=1400 audit(1719835016.102:431): avc:  denied  { mount } for  pid=2606 comm="syz.3.610" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   87.898581][   T23] audit: type=1400 audit(1719835016.433:432): avc:  denied  { unmount } for  pid=1640 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   87.935260][ T2624] overlayfs: failed to clone upperpath
[   88.079230][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   88.137272][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   88.302532][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   88.313476][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   88.323109][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   88.336482][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   88.345294][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   88.353472][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   88.356148][ T2656] overlayfs: failed to clone upperpath
[   88.415481][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   88.513713][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   88.751869][ T2678] EXT4-fs (loop4): Unsupported blocksize for fs encryption
[   88.761463][ T2678] /dev/loop0: Can't open blockdev
[   89.073835][ T2699] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xf
[   89.314570][ T1190] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[   89.343202][ T2714] overlayfs: failed to clone upperpath
[   89.362469][ T2719] netlink: 104 bytes leftover after parsing attributes in process `syz.0.650'.
[   89.387800][ T2725] device batadv_slave_1 entered promiscuous mode
[   89.393696][ T2727] overlayfs: failed to clone upperpath
[   89.408730][   T23] audit: type=1400 audit(1719835017.933:433): avc:  denied  { setopt } for  pid=2728 comm="syz.2.655" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   89.428061][   T23] audit: type=1400 audit(1719835017.953:434): avc:  denied  { ioctl } for  pid=2728 comm="syz.2.655" path="socket:[24327]" dev="sockfs" ino=24327 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   89.463011][ T2731] netlink: 12 bytes leftover after parsing attributes in process `syz.1.656'.
[   89.464541][  T973] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[   89.471748][ T2731] netlink: 4 bytes leftover after parsing attributes in process `syz.1.656'.
[   89.564468][ T1190] usb 4-1: Using ep0 maxpacket: 16
[   89.714656][ T1190] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   89.724363][  T973] usb 5-1: Using ep0 maxpacket: 16
[   89.725416][ T1190] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.739912][ T1190] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   89.752482][ T1190] usb 4-1: New USB device found, idVendor=056e, idProduct=00fb, bcdDevice= 0.00
[   89.761297][ T1190] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.769848][ T1190] usb 4-1: config 0 descriptor??
[   89.844420][  T973] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   89.855279][  T973] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.864760][  T973] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   89.877365][  T973] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   89.886219][  T973] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.894657][  T973] usb 5-1: config 0 descriptor??
[   89.902287][ T2725] device batadv_slave_1 left promiscuous mode
[   90.135537][ T2705] xt_TPROXY: Can be used only with -p tcp or -p udp
[   90.224463][   T23] audit: type=1400 audit(1719835018.754:435): avc:  denied  { append } for  pid=2696 comm="syz.3.641" name="usbmon7" dev="devtmpfs" ino=834 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   90.245263][ T1190] elecom 0003:056E:00FB.000B: unknown main item tag 0x0
[   90.254589][ T1190] elecom 0003:056E:00FB.000B: unbalanced delimiter at end of report description
[   90.263527][ T1190] elecom: probe of 0003:056E:00FB.000B failed with error -22
[   90.452948][  T971] usb 4-1: USB disconnect, device number 16
[   90.575180][ T2705] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   90.583583][ T2705] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   90.676084][ T2705] EXT4-fs (loop4): Ignoring removed oldalloc option
[   90.682531][ T2705] EXT4-fs (loop4): Unrecognized mount option "obj_type=({" or missing value
[   90.763876][  T973] usbhid 5-1:0.0: can't add hid device: -71
[   90.769714][  T973] usbhid: probe of 5-1:0.0 failed with error -71
[   90.778628][  T973] usb 5-1: USB disconnect, device number 16
[   90.846750][   T23] audit: type=1400 audit(1719835019.374:436): avc:  denied  { read } for  pid=2758 comm="syz.0.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   90.877581][ T2763] FAULT_INJECTION: forcing a failure.
[   90.877581][ T2763] name failslab, interval 1, probability 0, space 0, times 0
[   90.893810][ T2763] CPU: 1 PID: 2763 Comm: syz.1.668 Not tainted 5.4.276-syzkaller-00020-g4275fce9fe94 #0
[   90.903339][ T2763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   90.913225][ T2763] Call Trace:
[   90.916355][ T2763]  dump_stack+0x1d8/0x241
[   90.920514][ T2763]  ? panic+0x89d/0x89d
[   90.924505][ T2763]  ? __blockdev_direct_IO+0x16b1/0x49b0
[   90.929887][ T2763]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   90.935644][ T2763]  ? ext4_file_write_iter+0x8f8/0x10e0
[   90.940995][ T2763]  ? io_submit_one+0x7e6/0x1d80
[   90.945683][ T2763]  ? __se_sys_io_submit+0x16f/0x3c0
[   90.950717][ T2763]  ? do_syscall_64+0xca/0x1c0
[   90.955252][ T2763]  should_fail+0x71f/0x880
[   90.959520][ T2763]  ? setup_fault_attr+0x3d0/0x3d0
[   90.964353][ T2763]  ? ext4_find_extent+0x33e/0xda0
[   90.969210][ T2763]  should_failslab+0x5/0x20
[   90.973550][ T2763]  __kmalloc+0x51/0x2e0
[   90.977545][ T2763]  ext4_find_extent+0x33e/0xda0
[   90.982230][ T2763]  ext4_ext_map_blocks+0x289/0x7450
[   90.987267][ T2763]  ? __kernel_text_address+0x94/0x100
[   90.992475][ T2763]  ? unwind_get_return_address+0x49/0x80
[   90.998027][ T2763]  ? arch_stack_walk+0xf5/0x140
[   91.002712][ T2763]  ? ext4_ext_release+0x10/0x10
[   91.007398][ T2763]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   91.012695][ T2763]  ? _raw_spin_lock+0x1b0/0x1b0
[   91.017483][ T2763]  ? check_preemption_disabled+0x9f/0x320
[   91.023115][ T2763]  ? stack_trace_save+0x118/0x1c0
[   91.027973][ T2763]  ? debug_smp_processor_id+0x20/0x20
[   91.033183][ T2763]  ? _raw_spin_unlock_irqrestore+0x57/0x80
[   91.038817][ T2763]  ? _raw_read_unlock+0x21/0x40
[   91.043966][ T2763]  ? ext4_es_lookup_extent+0x559/0x9d0
[   91.049230][ T2763]  ext4_map_blocks+0xa2f/0x1ba0
[   91.053921][ T2763]  ? ext4_issue_zeroout+0x150/0x150
[   91.058952][ T2763]  _ext4_get_block+0x21b/0x610
[   91.063580][ T2763]  ? ext4_get_block+0x40/0x40
[   91.068166][ T2763]  ? kmem_cache_alloc+0xd9/0x250
[   91.072933][ T2763]  ? jbd2__journal_start+0x341/0x6c0
[   91.078046][ T2763]  ext4_get_block_trans+0x41a/0x5b0
[   91.083082][ T2763]  ? ext4_dio_get_block+0xb0/0xb0
[   91.087939][ T2763]  ? _copy_from_iter_full+0xa80/0xa80
[   91.093147][ T2763]  ext4_dio_get_block_unwritten_async+0x68/0x280
[   91.099398][ T2763]  ? ext4_dio_get_block_unwritten_sync+0x100/0x100
[   91.105730][ T2763]  __blockdev_direct_IO+0x16b1/0x49b0
[   91.110960][ T2763]  ? sb_init_dio_done_wq+0x80/0x80
[   91.115886][ T2763]  ? ext4_dio_get_block_unwritten_sync+0x100/0x100
[   91.122236][ T2763]  ? jbd2_journal_start_reserved+0x540/0x540
[   91.128037][ T2763]  ? down_write+0xd7/0x150
[   91.132287][ T2763]  ? up_read+0x1b0/0x1b0
[   91.136366][ T2763]  ? kmem_cache_alloc+0xd9/0x250
[   91.141151][ T2763]  ? ext4_dio_get_block_unwritten_sync+0x100/0x100
[   91.147476][ T2763]  ext4_direct_IO+0xc36/0x19a0
[   91.152083][ T2763]  ? ext4_releasepage+0x2b0/0x2b0
[   91.156938][ T2763]  ? memset+0x1f/0x40
[   91.160940][ T2763]  ? invalidate_inode_pages2_range+0xe6f/0xf30
[   91.166918][ T2763]  ? mb_cache_entry_put+0x90/0x90
[   91.171775][ T2763]  ? down_write_trylock+0x130/0x130
[   91.176816][ T2763]  ? unwind_next_frame+0x176a/0x1ea0
[   91.182193][ T2763]  ? invalidate_mapping_pages+0xa50/0xa50
[   91.187939][ T2763]  ? ext4_xattr_get+0x53c/0x7f0
[   91.192681][ T2763]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   91.198537][ T2763]  ? __mod_memcg_state+0x93/0x200
[   91.203567][ T2763]  ? ktime_get_coarse_real_ts64+0xcc/0xe0
[   91.209123][ T2763]  ? filemap_check_errors+0xda/0x130
[   91.214338][ T2763]  generic_file_direct_write+0x509/0x740
[   91.219796][ T2763]  ? pagecache_write_end+0xa0/0xa0
[   91.224739][ T2763]  ? file_update_time+0x34d/0x470
[   91.229599][ T2763]  ? file_remove_privs+0x640/0x640
[   91.234546][ T2763]  ? arch_stack_walk+0xf5/0x140
[   91.239234][ T2763]  ? iov_iter_discard+0xa0/0xa0
[   91.243919][ T2763]  ? down_write_trylock+0xd7/0x130
[   91.248869][ T2763]  __generic_file_write_iter+0x27d/0x530
[   91.254355][ T2763]  ext4_file_write_iter+0x8f8/0x10e0
[   91.259459][ T2763]  ? ext4_file_read_iter+0x140/0x140
[   91.264596][ T2763]  aio_write+0x47e/0x610
[   91.268653][ T2763]  ? aio_read+0x500/0x500
[   91.272852][ T2763]  ? fget_many+0x20/0x20
[   91.276986][ T2763]  ? io_submit_one+0x157/0x1d80
[   91.281672][ T2763]  io_submit_one+0x7e6/0x1d80
[   91.286189][ T2763]  ? page_fault+0x2f/0x40
[   91.290353][ T2763]  ? lookup_ioctx+0x470/0x470
[   91.294865][ T2763]  ? lookup_ioctx+0x281/0x470
[   91.299379][ T2763]  ? __sb_end_write+0xc4/0x120
[   91.303979][ T2763]  ? vfs_write+0x41a/0x4e0
[   91.308235][ T2763]  __se_sys_io_submit+0x16f/0x3c0
[   91.313093][ T2763]  ? __x64_sys_io_submit+0x80/0x80
[   91.318049][ T2763]  ? __ia32_sys_read+0x80/0x80
[   91.322639][ T2763]  do_syscall_64+0xca/0x1c0
[   91.326981][ T2763]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   91.332708][ T2763] RIP: 0033:0x7fa258692b99
[   91.336963][ T2763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.356681][ T2763] RSP: 002b:00007fa257914048 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   91.364927][ T2763] RAX: ffffffffffffffda RBX: 00007fa258820fa0 RCX: 00007fa258692b99
[   91.372739][ T2763] RDX: 0000000020000540 RSI: 000000000000003b RDI: 00007fa2587f4000
[   91.380635][ T2763] RBP: 00007fa2579140a0 R08: 0000000000000000 R09: 0000000000000000
[   91.388446][ T2763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.396259][ T2763] R13: 000000000000000b R14: 00007fa258820fa0 R15: 00007ffe40a71d08
[   91.433059][ T2769] netlink: 24 bytes leftover after parsing attributes in process `syz.3.670'.
[   91.606331][ T2783] bridge: RTM_NEWNEIGH with unconfigured vlan 4 on bridge0
[   91.629454][   T23] audit: type=1326 audit(1719835020.155:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2785 comm="syz.4.677" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f33ff9c1b99 code=0x0
[   91.682064][   T23] audit: type=1400 audit(1719835020.205:438): avc:  denied  { create } for  pid=2785 comm="syz.4.677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   91.703619][   T23] audit: type=1400 audit(1719835020.205:439): avc:  denied  { write } for  pid=2785 comm="syz.4.677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   91.725814][   T23] audit: type=1400 audit(1719835020.205:440): avc:  denied  { nlmsg_read } for  pid=2785 comm="syz.4.677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   91.746648][  T107] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[   91.754271][   T23] audit: type=1400 audit(1719835020.205:441): avc:  denied  { append } for  pid=2785 comm="syz.4.677" name="001" dev="devtmpfs" ino=824 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   91.899511][ T2799] netlink: 24 bytes leftover after parsing attributes in process `syz.0.682'.
[   91.925438][   T23] audit: type=1326 audit(1719835020.455:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2802 comm="syz.2.684" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f120abceb99 code=0x0
[   91.975828][ T2811] device ip6erspan0 entered promiscuous mode
[   92.020808][   T23] audit: type=1400 audit(1719835020.545:443): avc:  denied  { bind } for  pid=2812 comm="syz.0.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   92.053261][  T107] usb 4-1: too many configurations: 152, using maximum allowed: 8
[   92.186865][  T107] usb 4-1: unable to read config index 0 descriptor/start: -61
[   92.194468][  T107] usb 4-1: can't read configurations, error -61
[   92.343060][  T107] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[   92.652923][  T107] usb 4-1: too many configurations: 152, using maximum allowed: 8
[   92.698456][ T2838] F2FS-fs (loop4): invalid crc value
[   92.705734][ T2838] F2FS-fs (loop4): Found nat_bits in checkpoint
[   92.735056][ T2838] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   92.755421][ T1783] attempt to access beyond end of device
[   92.755421][ T1783] loop4: rw=2049, want=45104, limit=40427
[   92.772856][  T107] usb 4-1: unable to read config index 0 descriptor/start: -61
[   92.783333][  T107] usb 4-1: can't read configurations, error -61
[   92.792591][  T107] usb usb4-port1: attempt power cycle
[   93.019920][   T23] audit: type=1326 audit(1719835021.545:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2856 comm="syz.0.701" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff6d1fd0b99 code=0x0
[   93.045071][ T2854] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   93.055990][ T2854] ext4 filesystem being mounted at /root/syzkaller.gY640P/73/file0 supports timestamps until 2038 (0x7fffffff)
[   93.076484][ T2854] netlink: 16 bytes leftover after parsing attributes in process `syz.4.700'.
[   93.098327][ T2854] EXT4-fs error (device loop4): ext4_mb_generate_buddy:748: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   93.113251][ T2854] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 511 with error 28
[   93.118984][ T2862] fuse: Unknown parameter '000000000000000000040xffffffffffffffff0000000000000000000418446744073709551615000000000000000000001844674407370955161518446744073709551615'
[   93.128471][ T2854] EXT4-fs (loop4): This should not happen!! Data will be lost
[   93.128471][ T2854] 
[   93.154203][ T2854] EXT4-fs (loop4): Total free blocks count 0
[   93.161884][ T2854] EXT4-fs (loop4): Free/Dirty block details
[   93.168555][ T2854] EXT4-fs (loop4): free_blocks=65280
[   93.173959][ T2854] EXT4-fs (loop4): dirty_blocks=511
[   93.179068][ T2854] EXT4-fs (loop4): Block reservation details
[   93.185073][ T2854] EXT4-fs (loop4): i_reserved_data_blocks=511
[   93.212588][  T107] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[   93.342643][  T107] usb 4-1: too many configurations: 152, using maximum allowed: 8
[   93.462564][ T1190] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[   93.470127][  T107] usb 4-1: unable to read config index 0 descriptor/start: -61
[   93.477784][  T107] usb 4-1: can't read configurations, error -61
[   93.632376][  T107] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[   93.772405][  T107] usb 4-1: too many configurations: 152, using maximum allowed: 8
[   93.832362][ T1190] usb 5-1: config 0 has an invalid descriptor of length 36, skipping remainder of the config
[   93.892309][  T107] usb 4-1: unable to read config index 0 descriptor/start: -61
[   93.899872][  T107] usb 4-1: can't read configurations, error -61
[   93.909340][  T107] usb usb4-port1: unable to enumerate USB device
[   94.002278][ T1190] usb 5-1: New USB device found, idVendor=12d1, idProduct=1000, bcdDevice= 0.00
[   94.014388][ T1190] usb 5-1: New USB device strings: Mfr=174, Product=145, SerialNumber=3
[   94.022791][ T1190] usb 5-1: Product: syz
[   94.028513][ T1190] usb 5-1: Manufacturer: syz
[   94.033729][ T1190] usb 5-1: SerialNumber: syz
[   94.039909][ T1190] usb 5-1: config 0 descriptor??
[   94.053534][ T2885] netlink: 24 bytes leftover after parsing attributes in process `syz.0.709'.
[   94.082665][ T1190] usb 5-1: bad CDC descriptors
[   94.088750][ T2889] netlink: 'syz.1.711': attribute type 4 has an invalid length.
[   94.141953][ T2898] overlayfs: failed to clone upperpath
[   94.231242][ T2907] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2064 sclass=netlink_route_socket pid=2907 comm=syz.1.719
[   94.260416][ T2910] netlink: 24 bytes leftover after parsing attributes in process `syz.1.720'.
[   94.282918][ T2854] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   94.298136][ T1190] usb 5-1: USB disconnect, device number 17
[   94.484371][  T745] print_req_error: 84 callbacks suppressed
[   94.484384][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   94.485092][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   94.490401][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.513496][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.535714][  T428] buffer_io_error: 60 callbacks suppressed
[   94.535722][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   94.549604][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   94.549821][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.569177][ T2931] 9pnet: Insufficient options for proto=fd
[   94.574122][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   94.582951][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.594496][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   94.601878][  T107] usb 2-1: new low-speed USB device number 15 using dummy_hcd
[   94.602400][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.620346][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   94.628221][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   94.638980][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   94.953223][ T2937] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_lock,usrjquota=,,errors=continue
[   94.971171][ T1783] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /root/syzkaller.gY640P/74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   94.991807][  T107] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[   94.994523][ T1783] EXT4-fs error (device loop4): ext4_empty_dir:3002: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   95.002332][  T107] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[   95.021180][ T1783] EXT4-fs warning (device loop4): ext4_empty_dir:3004: inode #11: comm syz-executor: directory missing '.'
[   95.029585][  T107] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[   95.049206][  T107] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[   95.059865][  T107] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[   95.069549][  T107] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   95.079112][  T107] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[   95.218519][ T2946] netlink: 24 bytes leftover after parsing attributes in process `syz.0.731'.
[   95.242879][ T2948] overlayfs: failed to clone upperpath
[   95.255456][ T2948] tmpfs: Bad value for 'mode'
[   95.328336][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   95.328512][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   95.344268][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   95.350677][  T107] usb 2-1: string descriptor 0 read error: -22
[   95.375033][  T107] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[   95.391887][  T107] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.403096][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   95.411264][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   95.421932][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   95.444093][  T107] usb 2-1: config 0 descriptor??
[   95.482013][  T107] hub 2-1:0.0: bad descriptor, ignoring hub
[   95.487750][  T107] hub: probe of 2-1:0.0 failed with error -5
[   95.509016][ T2976] debugfs: Directory 'vcpu0' with parent '2969-4' already present!
[   95.525460][  T107] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input12
[   95.688629][   T23] kauditd_printk_skb: 3 callbacks suppressed
[   95.688638][   T23] audit: type=1400 audit(1719835024.217:448): avc:  denied  { getopt } for  pid=2927 comm="syz.1.724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   95.695635][ T2928] device bridge1 entered promiscuous mode
[   95.785496][   T23] audit: type=1400 audit(1719835024.317:449): avc:  denied  { read } for  pid=3013 comm="syz.3.749" path="socket:[26739]" dev="sockfs" ino=26739 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   95.792644][ T2928] netlink: 'syz.1.724': attribute type 4 has an invalid length.
[   95.849189][   T23] audit: type=1400 audit(1719835024.347:450): avc:  denied  { write } for  pid=3013 comm="syz.3.749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   95.853310][  T972] usb 2-1: USB disconnect, device number 15
[   95.887013][ T3017] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[   95.898660][   T23] audit: type=1400 audit(1719835024.347:451): avc:  denied  { connect } for  pid=3013 comm="syz.3.749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   95.938092][ T3017] EXT4-fs error (device loop4): ext4_quota_enable:6052: comm syz.4.751: Bad quota inum: 4278190083, type: 0
[   95.959750][ T3017] EXT4-fs warning (device loop4): ext4_enable_quotas:6100: Failed to enable quota tracking (type=0, err=-117, ino=4278190083). Please run e2fsck to fix.
[   95.989584][ T3017] EXT4-fs (loop4): mount failed
[   96.120255][ T3025] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue
[   96.134600][ T3025] ext4 filesystem being mounted at /root/syzkaller.njRQQc/55/bus supports timestamps until 2038 (0x7fffffff)
[   96.158501][   T23] audit: type=1400 audit(1719835024.687:452): avc:  denied  { read write } for  pid=3024 comm="syz.3.753" name="uhid" dev="devtmpfs" ino=9289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   96.187527][  T972] hid (null): unknown global tag 0xe
[   96.198876][   T23] audit: type=1400 audit(1719835024.717:453): avc:  denied  { open } for  pid=3024 comm="syz.3.753" path="/dev/uhid" dev="devtmpfs" ino=9289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   96.199928][  T972] hid-generic 0000:0000:0000.000C: unknown main item tag 0xd
[   96.259002][ T3035] process 'syz.4.755' launched '/dev/fd/4' with NULL argv: empty string added
[   96.269072][   T23] audit: type=1400 audit(1719835024.797:454): avc:  denied  { execute_no_trans } for  pid=3034 comm="syz.4.755" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="tmpfs" ino=26823 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   96.272233][  T972] hid-generic 0000:0000:0000.000C: unknown main item tag 0xd
[   96.317171][ T3036] netlink: 'syz.4.755': attribute type 15 has an invalid length.
[   96.361019][  T972] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   96.371118][  T972] hid-generic 0000:0000:0000.000C: unknown main item tag 0x7
[   96.383796][  T972] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   96.392236][  T972] hid-generic 0000:0000:0000.000C: unknown global tag 0xe
[   96.399448][  T972] hid-generic 0000:0000:0000.000C: item 0 1 1 14 parsing failed
[   96.404382][ T3042] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   96.418694][  T972] hid-generic: probe of 0000:0000:0000.000C failed with error -22
[   96.518753][ T3042] SELinux:  Context system_u:object_r:apt_var_lib_t:s0 is not valid (left unmapped).
[   96.557662][   T23] audit: type=1400 audit(1719835025.087:455): avc:  denied  { relabelto } for  pid=3041 comm="syz.4.758" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[   96.616150][   T23] audit: type=1400 audit(1719835025.117:456): avc:  denied  { setattr } for  pid=3041 comm="syz.4.758" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[   96.624726][ T3059] netlink: 20 bytes leftover after parsing attributes in process `syz.1.763'.
[   96.865496][ T3080] device bridge2 entered promiscuous mode
[   97.054160][ T3088] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pid=3088 comm=syz.3.773
[   97.363519][   T23] audit: type=1400 audit(1719835025.897:457): avc:  denied  { mounton } for  pid=3095 comm="syz.3.776" path="/root/syzkaller.njRQQc/62/file0/file0/bus" dev="loop3" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[   97.783298][ T3139] device bridge3 entered promiscuous mode
[   98.031458][ T3142] EXT4-fs error (device loop4): ext4_mb_generate_buddy:748: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[   98.046153][ T3142] EXT4-fs (loop4): Remounting filesystem read-only
[   98.053005][ T3142] EXT4-fs error (device loop4): ext4_free_branches:1022: inode #11: comm syz.4.790: invalid indirect mapped block 4278190080 (level 0)
[   98.068012][ T3142] EXT4-fs error (device loop4): ext4_free_branches:1022: inode #11: comm syz.4.790: invalid indirect mapped block 1 (level 1)
[   98.081296][ T3142] EXT4-fs (loop4): 1 truncate cleaned up
[   98.086744][ T3142] EXT4-fs (loop4): mounted filesystem without journal. Opts: abort,errors=continue,inode_readahead_blks=0x0000000001000000,errors=remount-ro,norecovery,jqfmt=vfsv0,nolazytime,noquota,auto_da_alloc=0x0000000000000006,usrquota,init_itable=0x0000000000000005,
[   98.350059][  T358] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[   98.529941][  T972] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[   98.619921][  T358] usb 2-1: device descriptor read/64, error 18
[   98.899824][  T972] usb 5-1: config 32 has an invalid descriptor of length 0, skipping remainder of the config
[   99.029669][  T358] usb 2-1: device descriptor read/64, error 18
[   99.199698][  T972] usb 5-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[   99.208607][  T972] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.216482][  T972] usb 5-1: Product: syz
[   99.220478][  T972] usb 5-1: Manufacturer: syz
[   99.224924][  T972] usb 5-1: SerialNumber: syz
[   99.299584][  T358] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[   99.471561][  T377] usb 5-1: USB disconnect, device number 18
[   99.497781][  T745] print_req_error: 171 callbacks suppressed
[   99.497794][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   99.498413][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   99.503666][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.515991][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.547910][  T428] buffer_io_error: 129 callbacks suppressed
[   99.547918][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.561685][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.572401][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.580970][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.591654][  T358] usb 2-1: device descriptor read/64, error 18
[   99.591661][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.591742][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.616203][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.624120][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.634711][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.648534][  T351] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   99.648585][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.659952][  T351] Buffer I/O error on dev loop3p4, logical block 1, async page read
[   99.670455][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.686066][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.694082][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.702004][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[   99.909271][  T107] usb 4-1: new low-speed USB device number 21 using dummy_hcd
[   99.989208][  T358] usb 2-1: device descriptor read/64, error 18
[  100.109720][  T358] usb usb2-port1: attempt power cycle
[  100.189321][ T3204] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables
[  100.198612][ T3204] x_tables: ip_tables: icmp match: only valid for protocol 1
[  100.329120][  T107] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  100.337227][  T107] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  100.345127][  T107] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  100.353838][  T107] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  100.364428][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  100.374122][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  100.383747][  T107] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  100.518934][  T358] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  100.629005][  T107] usb 4-1: string descriptor 0 read error: -22
[  100.658758][  T107] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  100.668452][  T107] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.677560][  T107] usb 4-1: config 0 descriptor??
[  100.688923][  T358] usb 2-1: device descriptor read/8, error -61
[  100.719238][  T107] hub 4-1:0.0: bad descriptor, ignoring hub
[  100.724976][  T107] hub: probe of 4-1:0.0 failed with error -5
[  100.731760][  T107] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13
[  100.953511][ T3191] device bridge1 entered promiscuous mode
[  100.958851][  T358] usb 2-1: device descriptor read/8, error -61
[  100.999316][ T3191] netlink: 'syz.3.809': attribute type 4 has an invalid length.
[  101.072832][  T107] usb 4-1: USB disconnect, device number 21
[  101.740279][ T3241] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables
[  101.749778][ T3241] x_tables: ip_tables: icmp match: only valid for protocol 1
[  102.227530][ T3255] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,nombcache,,errors=continue
[  102.239782][ T3255] ext4 filesystem being mounted at /root/syzkaller.gY640P/106/bus supports timestamps until 2038 (0x7fffffff)
[  102.385661][ T3267] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  102.399474][ T3267] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,mblk_io_submit,dioread_lock,norecovery,abort,lazytime,noload,usrquota,noauto_da_alloc,nogrpid,sb=0x0000000000000009,,errors=continue
[  102.422148][   T23] kauditd_printk_skb: 1 callbacks suppressed
[  102.422159][   T23] audit: type=1400 audit(1719835030.960:459): avc:  denied  { read append open } for  pid=3266 comm="syz.4.834" path="/root/syzkaller.gY640P/107/file1/cgroup.controllers" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  102.455964][   T23] audit: type=1400 audit(1719835030.960:460): avc:  denied  { map } for  pid=3266 comm="syz.4.834" path="/root/syzkaller.gY640P/107/file1/cgroup.controllers" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  102.637873][  T358] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  102.727907][  T358] usb 2-1: Using ep0 maxpacket: 16
[  102.847888][  T358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  102.858905][  T358] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  102.867676][  T358] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.876308][  T358] usb 2-1: config 0 descriptor??
[  103.119750][ T3264] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  103.217595][  T972] usb 4-1: new low-speed USB device number 22 using dummy_hcd
[  103.482113][ T3301] netlink: 8 bytes leftover after parsing attributes in process `syz.4.845'.
[  103.558611][ T3311] netlink: 28 bytes leftover after parsing attributes in process `syz.0.849'.
[  103.597493][  T972] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  103.605679][  T972] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  103.613805][  T972] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  103.622837][  T972] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  103.633608][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  103.643511][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  103.653385][  T972] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  103.907417][  T972] usb 4-1: string descriptor 0 read error: -22
[  103.913491][  T972] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  103.922311][  T972] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.930754][  T972] usb 4-1: config 0 descriptor??
[  103.957285][  T358] usbhid 2-1:0.0: can't add hid device: -71
[  103.963272][  T358] usbhid: probe of 2-1:0.0 failed with error -71
[  103.972215][  T358] usb 2-1: USB disconnect, device number 19
[  103.978025][  T972] hub 4-1:0.0: bad descriptor, ignoring hub
[  103.978067][  T972] hub: probe of 4-1:0.0 failed with error -5
[  103.990715][  T972] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input14
[  104.206443][ T3322] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  104.215127][ T3322] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  104.236825][ T3290] device bridge2 entered promiscuous mode
[  104.313520][ T3290] netlink: 'syz.3.840': attribute type 4 has an invalid length.
[  104.495464][  T973] usb 4-1: USB disconnect, device number 22
[  104.662979][ T3338] netlink: 8 bytes leftover after parsing attributes in process `syz.0.859'.
[  104.678952][ T3340] netlink: 8 bytes leftover after parsing attributes in process `syz.0.860'.
[  105.089574][  T745] print_req_error: 28 callbacks suppressed
[  105.089586][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  105.089632][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.095625][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.106431][  T428] buffer_io_error: 19 callbacks suppressed
[  105.106439][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.117527][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  105.128607][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.160317][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.168257][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.179129][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.187393][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.199115][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.207219][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.218319][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.232720][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  105.250459][ T3348] netlink: 3696 bytes leftover after parsing attributes in process `syz.4.863'.
[  105.265037][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  105.288558][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  105.302131][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.310075][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  105.316744][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.326737][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  105.436465][  T107] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  105.550547][ T3348] F2FS-fs (loop4): project quota file already specified
[  105.676396][  T107] usb 4-1: Using ep0 maxpacket: 32
[  105.701271][ T3361] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  105.796364][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.807839][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.819969][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  105.830802][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  105.840748][  T107] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  105.857811][  T107] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  105.875007][  T107] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.888852][  T107] usb 4-1: config 0 descriptor??
[  106.104370][ T3375] x_tables: ip_tables: icmp match: only valid for protocol 1
[  106.488595][  T107] ntrig 0003:1B96:000A.000D: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0
[  106.717828][ T3383] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,nombcache,,errors=continue
[  106.730021][ T3383] ext4 filesystem being mounted at /root/syzkaller.gY640P/119/bus supports timestamps until 2038 (0x7fffffff)
[  106.756800][   T23] audit: type=1400 audit(1719835035.302:461): avc:  denied  { ioctl } for  pid=3382 comm="syz.4.875" path="/root/syzkaller.gY640P/119/bus/cgroup.controllers" dev="loop4" ino=18 ioctlcmd=0x660b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  106.797685][  T107] usb 4-1: USB disconnect, device number 23
[  106.873986][ T3391] xt_CT: You must specify a L4 protocol and not use inversions on it
[  106.886738][ T3391] netlink: 12 bytes leftover after parsing attributes in process `syz.4.877'.
[  106.895417][ T3391] netlink: 40 bytes leftover after parsing attributes in process `syz.4.877'.
[  106.904173][ T3391] netlink: 40 bytes leftover after parsing attributes in process `syz.4.877'.
[  107.006564][ T3394] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=b817c018, mo2=0002]
[  107.014513][ T3394] System zones: 0-1, 3-12
[  107.019056][ T3394] EXT4-fs (loop4): mounted filesystem without journal. Opts: barrier,init_itable=0x0000000000000009,grpquota,data_err=abort,grpquota,lazytime,auto_da_alloc=0x0000000000000008,debug,noauto_da_alloc,,errors=continue
[  107.042217][ T3394] EXT4-fs error (device loop4): ext4_mb_generate_buddy:748: group 0, block bitmap and bg descriptor inconsistent: 25 vs 83886105 free clusters
[  107.057828][ T3394] overlayfs: upper fs does not support xattr, falling back to index=off and metacopy=off.
[  107.073086][ T1783] EXT4-fs error (device loop4): ext4_empty_dir:2990: inode #11: comm syz-executor: invalid size
[  107.083776][ T1783] EXT4-fs warning (device loop4): ext4_rmdir:3274: inode #11: comm syz-executor: empty directory 'file1' has too many links (0)
[  107.098416][   T23] audit: type=1400 audit(1719835035.642:462): avc:  denied  { remove_name } for  pid=1783 comm="syz-executor" name="work" dev="loop4" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  107.120551][   T23] audit: type=1400 audit(1719835035.652:463): avc:  denied  { unlink } for  pid=144 comm="syslogd" name="messages.0" dev="tmpfs" ino=951 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.299196][   T23] audit: type=1400 audit(1719835035.842:464): avc:  denied  { connect } for  pid=3406 comm="syz.3.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  107.323643][   T23] audit: type=1400 audit(1719835035.862:465): avc:  denied  { read } for  pid=3406 comm="syz.3.884" laddr=fe80::11 lport=4 faddr=ff01::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  107.458713][ T3415] overlayfs: overlapping lowerdir path
[  107.518477][ T3423] EXT4-fs (loop3): Mount option "nouser_xattr" will be removed by 3.5
[  107.518477][ T3423] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  107.518477][ T3423] 
[  107.547857][ T3423] EXT4-fs error (device loop3) in ext4_do_update_inode:5534: error 27
[  107.556957][ T3423] EXT4-fs (loop3): Remounting filesystem read-only
[  107.563567][ T3423] EXT4-fs error (device loop3) in ext4_do_update_inode:5534: error 27
[  107.572388][ T3423] Quota error (device loop3): write_blk: dquota write failed
[  107.579769][ T3423] Quota error (device loop3): qtree_write_dquot: Error -27 occurred while creating quota
[  107.589680][ T3423] EXT4-fs (loop3): 1 truncate cleaned up
[  107.595147][ T3423] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nouser_xattr,
[  107.605414][ T3423] ext4 filesystem being mounted at /root/syzkaller.njRQQc/81/file1 supports timestamps until 2038 (0x7fffffff)
[  107.619666][   T23] audit: type=1400 audit(1719835036.163:466): avc:  denied  { write } for  pid=3422 comm="syz.3.889" path="/root/syzkaller.njRQQc/81/file1/file0" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  107.620085][ T3423] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz.3.889: path /root/syzkaller.njRQQc/81/file1: bad entry in directory: rec_len is smaller than minimal - offset=2364, inode=0, rec_len=0, size=4096 fake=0
[  107.669398][ T3423] EXT4-fs (loop3): Remounting filesystem read-only
[  107.754375][   T23] audit: type=1400 audit(1719835036.293:467): avc:  denied  { mounton } for  pid=3437 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  107.823612][ T3437] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.831108][ T3437] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.839200][ T3437] device bridge_slave_0 entered promiscuous mode
[  107.876308][ T3437] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.883941][ T3437] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.892125][ T3437] device bridge_slave_1 entered promiscuous mode
[  107.969047][ T3437] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.975913][ T3437] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.982993][ T3437] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.989794][ T3437] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.012324][  T971] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  108.020395][  T971] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.027970][  T971] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.045815][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  108.053811][  T107] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.060921][  T107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.068229][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  108.076276][  T107] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.083089][  T107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.090892][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  108.098686][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  108.116766][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  108.128329][  T377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  108.150830][  T377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  108.159803][  T377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  108.168421][  T377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  108.191520][   T23] audit: type=1400 audit(1719835036.723:468): avc:  denied  { mounton } for  pid=3451 comm="syz.2.891" path="/root/syzkaller.QwIMA6/0/file0" dev="sda1" ino=2007 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=blk_file permissive=1
[  108.191821][ T3452] FAT-fs (loop5): unable to read boot sector
[  108.255207][  T107] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  108.263427][ T3457] netlink: 96 bytes leftover after parsing attributes in process `syz.2.897'.
[  108.284872][ T3459] netlink: 24 bytes leftover after parsing attributes in process `syz.2.898'.
[  108.309284][ T3461] overlayfs: overlapping lowerdir path
[  108.584734][ T3489] overlayfs: failed to resolve './file1': -2
[  108.592292][ T3473] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  108.601240][ T3473] ext4 filesystem being mounted at /root/syzkaller.gY640P/126/bus supports timestamps until 2038 (0x7fffffff)
[  108.648400][ T3497] overlayfs: failed to clone lowerpath
[  108.685683][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.697048][  T107] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.707170][  T107] usb 4-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  108.716047][  T107] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.729737][  T107] usb 4-1: config 0 descriptor??
[  109.237378][  T107] belkin 0003:1020:0006.000E: hidraw0: USB HID v0.00 Device [HID 1020:0006] on usb-dummy_hcd.3-1/input0
[  109.468858][ T3529] fuse: Bad value for 'fd'
[  109.521133][ T3532] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10 sclass=netlink_route_socket pid=3532 comm=syz.4.922
[  109.556708][ T3536] overlayfs: overlapping lowerdir path
[  109.600984][ T3538] overlayfs: failed to resolve './file1': -2
[  109.665393][ T3542] EXT4-fs (loop4): Test dummy encryption mode enabled
[  109.675057][ T3542] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  109.724714][   T23] audit: type=1400 audit(1719835038.244:469): avc:  denied  { rename } for  pid=3541 comm="syz.4.927" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  109.839690][ T3556] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60082 sclass=netlink_route_socket pid=3556 comm=syz.4.931
[  109.865302][ T3556] device bridge_slave_1 left promiscuous mode
[  109.871492][ T3556] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.882061][ T3556] device bridge_slave_0 left promiscuous mode
[  109.888954][ T3556] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.923803][ T3564] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3564 comm=syz.4.931
[  109.970338][  T107] usb 4-1: USB disconnect, device number 24
[  110.054173][    T5] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  110.127840][  T745] print_req_error: 69 callbacks suppressed
[  110.127852][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  110.127888][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  110.143714][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.145190][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.164099][  T745] buffer_io_error: 50 callbacks suppressed
[  110.164108][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  110.180525][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.199963][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.212060][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.220199][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.231112][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.239201][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.249902][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.257851][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.268650][ T1190] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  110.268699][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.297787][ T3573] FAT-fs (loop3): Unrecognized mount option "utf8=1" or missing value
[  110.299699][ T3585] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3585 comm=syz.0.941
[  110.310099][ T3573] netlink: 20 bytes leftover after parsing attributes in process `syz.3.937'.
[  110.318151][    T5] usb 2-1: Using ep0 maxpacket: 8
[  110.349451][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  110.349502][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  110.369712][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  110.371758][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.387167][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.400980][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  110.444063][    T5] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  110.453146][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.461812][    T5] usb 2-1: config 0 descriptor??
[  110.573990][ T1190] usb 5-1: Using ep0 maxpacket: 8
[  110.793921][ T1190] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  110.804956][ T1190] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  110.814709][ T1190] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  110.825445][ T1190] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  110.976024][ T3611] overlayfs: unrecognized mount option "reiser\s\" or missing value
[  110.991588][ T3603] FAT-fs (loop2): Directory bread(block 64) failed
[  110.993786][ T1190] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  110.998132][ T3603] FAT-fs (loop2): Directory bread(block 65) failed
[  111.010404][ T1190] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.013432][ T3603] FAT-fs (loop2): Directory bread(block 66) failed
[  111.021520][ T1190] usb 5-1: Product: syz
[  111.027747][ T3603] FAT-fs (loop2): Directory bread(block 67) failed
[  111.031798][ T1190] usb 5-1: Manufacturer: syz
[  111.038286][ T3603] FAT-fs (loop2): Directory bread(block 68) failed
[  111.042931][ T1190] usb 5-1: SerialNumber: syz
[  111.049128][ T3603] FAT-fs (loop2): Directory bread(block 69) failed
[  111.061578][ T3603] FAT-fs (loop2): Directory bread(block 70) failed
[  111.064150][ T3611] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3611 comm=syz.0.949
[  111.068044][ T3603] FAT-fs (loop2): Directory bread(block 71) failed
[  111.086737][ T3603] FAT-fs (loop2): Directory bread(block 72) failed
[  111.093075][ T3603] FAT-fs (loop2): Directory bread(block 73) failed
[  111.310899][ T3618] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  111.321907][ T3618] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  111.348294][ T3618] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002]
[  111.356906][ T3618] System zones: 1-12
[  111.361745][ T3618] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2221: inode #15: comm syz.3.951: corrupted in-inode xattr
[  111.373764][ T3618] EXT4-fs error (device loop3): ext4_orphan_get:1240: comm syz.3.951: couldn't read orphan inode 15 (err -117)
[  111.385783][ T3618] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue
[  111.407876][ T3618] EXT4-fs warning (device loop3): dx_probe:791: inode #2: comm syz.3.951: Unrecognised inode hash code 4
[  111.418237][ T1190] usb 5-1: USB disconnect, device number 19
[  111.419287][ T3618] EXT4-fs warning (device loop3): dx_probe:931: inode #2: comm syz.3.951: Corrupt directory, running e2fsck is recommended
[  111.447153][ T3618] EXT4-fs warning (device loop3): dx_probe:791: inode #2: comm syz.3.951: Unrecognised inode hash code 4
[  111.458436][ T3618] EXT4-fs warning (device loop3): dx_probe:931: inode #2: comm syz.3.951: Corrupt directory, running e2fsck is recommended
[  111.613458][    T5] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  111.623543][    T5] asix: probe of 2-1:0.0 failed with error -71
[  111.632312][    T5] usb 2-1: USB disconnect, device number 20
[  111.753968][    T7] attempt to access beyond end of device
[  111.753968][    T7] loop2: rw=1, want=1256, limit=256
[  111.764766][    T7] attempt to access beyond end of device
[  111.764766][    T7] loop2: rw=1, want=1832, limit=256
[  111.776528][    T7] attempt to access beyond end of device
[  111.776528][    T7] loop2: rw=1, want=4240, limit=256
[  111.788704][    T7] attempt to access beyond end of device
[  111.788704][    T7] loop2: rw=1, want=6840, limit=256
[  111.799448][  T972] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  111.812068][    T7] attempt to access beyond end of device
[  111.812068][    T7] loop2: rw=1, want=10936, limit=256
[  111.826754][    T7] attempt to access beyond end of device
[  111.826754][    T7] loop2: rw=1, want=16536, limit=256
[  111.841023][    T7] attempt to access beyond end of device
[  111.841023][    T7] loop2: rw=1, want=20048, limit=256
[  111.854643][    T7] attempt to access beyond end of device
[  111.854643][    T7] loop2: rw=1, want=22824, limit=256
[  111.868818][    T7] attempt to access beyond end of device
[  111.868818][    T7] loop2: rw=1, want=28096, limit=256
[  111.879994][   T23] audit: type=1400 audit(1719835040.425:470): avc:  denied  { execute } for  pid=3630 comm="syz.4.955" path=2F6D656D66643A0B656D31C1F8A68D4EC0A377E2CBA2BAE5F497AC232AFF202864656C6574656429 dev="tmpfs" ino=30875 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.916377][    T7] attempt to access beyond end of device
[  111.916377][    T7] loop2: rw=1, want=33800, limit=256
[  111.952909][ T3634] netlink: 24 bytes leftover after parsing attributes in process `syz.4.956'.
[  112.065232][  T972] usb 4-1: Using ep0 maxpacket: 32
[  112.155746][ T3652] overlayfs: failed to resolve './file1': -2
[  112.183206][  T972] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.273196][    T5] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  112.353098][  T972] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  112.362120][  T972] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.370023][  T972] usb 4-1: Product: syz
[  112.374282][  T972] usb 4-1: Manufacturer: syz
[  112.378732][  T972] usb 4-1: SerialNumber: syz
[  112.383645][   T23] audit: type=1400 audit(1719835040.925:471): avc:  denied  { create } for  pid=3659 comm="syz.2.965" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  112.387287][  T972] usb 4-1: config 0 descriptor??
[  112.443608][  T972] cdc_ether 4-1:0.0: skipping garbage
[  112.450746][  T972] cdc_ether 4-1:0.0: skipping garbage
[  112.456229][  T972] usb 4-1: bad CDC descriptors
[  112.461223][  T972] usb 4-1: unsupported MDLM descriptors
[  112.522910][    T5] usb 5-1: Using ep0 maxpacket: 32
[  112.535273][ T3666] netlink: 24 bytes leftover after parsing attributes in process `syz.2.967'.
[  112.642947][    T5] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  112.658126][  T972] usb 4-1: USB disconnect, device number 25
[  112.826525][    T5] usb 5-1: New USB device found, idVendor=0483, idProduct=3747, bcdDevice=20.43
[  112.835864][    T5] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.844487][    T5] usb 5-1: Product: syz
[  112.848450][    T5] usb 5-1: Manufacturer: syz
[  112.853118][    T5] usb 5-1: SerialNumber: syz
[  112.865376][    T5] usb 5-1: config 0 descriptor??
[  112.885821][ T3683] overlayfs: failed to resolve './file1': -2
[  112.903499][    T5] usb 5-1: Ignoring serial port reserved for JTAG
[  112.911735][ T3685] input: syz1 as /devices/virtual/input/input15
[  112.957253][ T3695] netlink: 24 bytes leftover after parsing attributes in process `syz.2.978'.
[  113.105012][    T5] usb 5-1: USB disconnect, device number 20
[  113.145437][ T3714] overlayfs: failed to resolve './file1': -2
[  113.169904][ T3718] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=39 sclass=netlink_tcpdiag_socket pid=3718 comm=syz.2.988
[  113.199104][ T3720] netlink: 24 bytes leftover after parsing attributes in process `syz.2.990'.
[  113.239574][ T3728] rtc_cmos 00:00: Alarms can be up to one day in the future
[  113.253619][ T3723] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  113.268905][ T3723] ext4 filesystem being mounted at /root/syzkaller.njRQQc/93/file0 supports timestamps until 2038 (0x7fffffff)
[  113.315140][ T3723] EXT4-fs error (device loop3): ext4_mb_generate_buddy:748: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  113.477642][ T3738] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  113.522424][  T107] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  113.782419][  T107] usb 3-1: Using ep0 maxpacket: 16
[  113.902336][  T107] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.927571][ T3755] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue
[  113.932259][  T107] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  113.958907][ T3761] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1000'.
[  113.960815][  T107] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  113.975008][ T3761] PF_BRIDGE: br_mdb_parse() with invalid ifindex
[  113.977868][  T107] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.004075][   T23] audit: type=1400 audit(1719835042.546:472): avc:  denied  { map } for  pid=3754 comm="syz.4.999" path="/root/syzkaller.gY640P/139/file1/bus/file0" dev="overlay" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  114.029633][  T107] usb 3-1: config 0 descriptor??
[  114.040059][ T1783] EXT4-fs error (device loop4): ext4_empty_dir:2990: inode #11: comm syz-executor: invalid size
[  114.054778][ T3766] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1001'.
[  114.064136][ T1783] EXT4-fs warning (device loop4): ext4_rmdir:3274: inode #11: comm syz-executor: empty directory 'file1' has too many links (0)
[  114.135826][ T3775] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1006'.
[  114.176103][ T3778] 9pnet: Insufficient options for proto=fd
[  114.224387][ T3787] tipc: Failed to remove local publication {66,1,1}/989543106
[  114.231796][ T3787] tipc: Failed to remove local publication {66,1,1}/989543106
[  114.239283][ T3787] tipc: Failed to remove local publication {66,4,4}/989543105
[  114.239807][ T3789] PF_BRIDGE: br_mdb_parse() with invalid entry
[  114.347746][ T3795] incfs: Can't find or create .index dir in ./file0
[  114.354572][ T3795] incfs: mount failed -14
[  114.392080][   T23] audit: type=1400 audit(1719835042.886:473): avc:  denied  { write } for  pid=3773 comm="syz.4.1002" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  114.440328][   T23] audit: type=1400 audit(1719835042.886:474): avc:  denied  { add_name } for  pid=3773 comm="syz.4.1002" name=".index" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  114.461711][   T23] audit: type=1400 audit(1719835042.886:475): avc:  denied  { associate } for  pid=3773 comm="syz.4.1002" name=".index" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  114.486614][ T3799] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1013'.
[  114.559580][ T3812] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  114.632766][ T3732] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  114.951124][  T107] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.000F/input/input16
[  114.993641][ T3818] FAT-fs (loop3): Directory bread(block 64) failed
[  115.000288][ T3818] FAT-fs (loop3): Directory bread(block 65) failed
[  115.009065][ T3818] FAT-fs (loop3): Directory bread(block 66) failed
[  115.015728][ T3818] FAT-fs (loop3): Directory bread(block 67) failed
[  115.022830][  T107] microsoft 0003:045E:07DA.000F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  115.048811][ T3818] FAT-fs (loop3): Directory bread(block 68) failed
[  115.055572][ T3818] FAT-fs (loop3): Directory bread(block 69) failed
[  115.068981][ T3818] FAT-fs (loop3): Directory bread(block 70) failed
[  115.083506][ T3818] FAT-fs (loop3): Directory bread(block 71) failed
[  115.122057][ T3818] FAT-fs (loop3): Directory bread(block 72) failed
[  115.155034][ T3818] FAT-fs (loop3): Directory bread(block 73) failed
[  115.163818][ T3828] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1025'.
[  115.252629][  T428] print_req_error: 74 callbacks suppressed
[  115.252642][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  115.261228][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  115.270960][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.287658][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.292231][  T428] buffer_io_error: 55 callbacks suppressed
[  115.292240][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.312979][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  115.323651][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.336587][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.344635][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.355644][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.363531][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.374220][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.382262][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.393151][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.411845][ T3843] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  115.435058][ T3843] EXT4-fs (loop3): Unsupported blocksize for fs encryption
[  115.451567][  T972] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  115.477687][ T3847] binder: BINDER_SET_CONTEXT_MGR already set
[  115.478649][   T23] audit: type=1400 audit(1719835044.016:476): avc:  denied  { write } for  pid=3838 comm="syz.1.1029" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  115.483570][ T3847] binder: 3838:3847 ioctl 4018620d 20000040 returned -16
[  115.507006][   T23] audit: type=1400 audit(1719835044.016:477): avc:  denied  { map } for  pid=3838 comm="syz.1.1029" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  115.546715][  T745] blk_update_request: I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  115.560062][  T428] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  115.571293][  T745] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  115.580731][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.594028][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.601992][  T428] Buffer I/O error on dev loop3p2, logical block 0, async page read
[  115.731312][  T972] usb 5-1: Using ep0 maxpacket: 8
[  115.743277][ T3843] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  115.751425][ T3843] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  115.759550][ T3843] F2FS-fs (loop3): Unrecognized mount option "00000000000000000000" or missing value
[  115.965329][ T3859] incfs: Can't find or create .index dir in ./file0
[  115.972158][ T3859] incfs: mount failed -14
[  116.006503][  T972] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.024965][  T972] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.044729][  T972] usb 5-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  116.056459][  T972] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.065090][  T972] usb 5-1: config 0 descriptor??
[  116.283983][  T973] usb 3-1: USB disconnect, device number 8
[  116.319473][ T3872] fuse: Bad value for 'fd'
[  116.323899][   T23] audit: type=1400 audit(1719835044.857:478): avc:  denied  { mounton } for  pid=3871 comm="syz.0.1038" path="/root/syzkaller.6OHM7j/252/file0" dev="sda1" ino=2007 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=sock_file permissive=1
[  116.349187][ T3868] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1036'.
[  116.385206][ T3888] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  116.403794][ T3888] overlayfs: failed to clone upperpath
[  116.410718][   T23] audit: type=1400 audit(1719835044.947:479): avc:  denied  { write } for  pid=3887 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  116.575809][  T972] uclogic 0003:2179:0077.0010: item fetching failed at offset 5/7
[  116.585480][  T972] uclogic 0003:2179:0077.0010: parse failed
[  116.591596][  T972] uclogic: probe of 0003:2179:0077.0010 failed with error -22
[  116.730895][  T973] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  116.752004][  T971] usb 5-1: USB disconnect, device number 21
[  117.090748][  T973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.101501][  T973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.111051][  T973] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  117.119832][  T973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.128381][  T973] usb 3-1: config 0 descriptor??
[  117.270249][ T3912] EXT4-fs (loop3): Ignoring removed bh option
[  117.289076][ T3912] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  117.289281][ T3920] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1052'.
[  117.300258][ T3912] EXT4-fs (loop3): Unsupported blocksize for fs encryption
[  117.374181][ T3921] EXT4-fs (loop4): 1 orphan inode deleted
[  117.388786][ T3921] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[  117.408258][ T3921] ext4 filesystem being mounted at /root/syzkaller.gY640P/142/file1 supports timestamps until 2038 (0x7fffffff)
[  117.564358][ T3951] FAULT_INJECTION: forcing a failure.
[  117.564358][ T3951] name failslab, interval 1, probability 0, space 0, times 0
[  117.577067][ T3951] CPU: 0 PID: 3951 Comm: syz.1.1062 Not tainted 5.4.276-syzkaller-00020-g4275fce9fe94 #0
[  117.586663][ T3951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  117.596640][ T3951] Call Trace:
[  117.599774][ T3951]  dump_stack+0x1d8/0x241
[  117.603931][ T3951]  ? panic+0x89d/0x89d
[  117.607838][ T3951]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[  117.613481][ T3951]  should_fail+0x71f/0x880
[  117.617735][ T3951]  ? setup_fault_attr+0x3d0/0x3d0
[  117.622595][ T3951]  ? __alloc_skb+0x7a/0x4d0
[  117.626938][ T3951]  should_failslab+0x5/0x20
[  117.631271][ T3951]  kmem_cache_alloc+0x28/0x250
[  117.635869][ T3951]  __alloc_skb+0x7a/0x4d0
[  117.640038][ T3951]  alloc_skb_with_frags+0x92/0x550
[  117.645007][ T3951]  ? avc_has_perm_noaudit+0x2f1/0x3d0
[  117.650190][ T3951]  ? skb_set_owner_w+0x1e4/0x330
[  117.654981][ T3951]  sock_alloc_send_pskb+0x831/0x950
[  117.660012][ T3951]  ? sock_kzfree_s+0x50/0x50
[  117.664427][ T3951]  ? _raw_spin_lock+0xa4/0x1b0
[  117.669023][ T3951]  ? _raw_spin_trylock_bh+0x190/0x190
[  117.674232][ T3951]  ? security_socket_getpeersec_dgram+0xa0/0xb0
[  117.680310][ T3951]  unix_dgram_sendmsg+0x6fa/0x1ff0
[  117.685382][ T3951]  ? selinux_socket_sendmsg+0x243/0x340
[  117.690779][ T3951]  ? rw_copy_check_uvector+0x75/0x2f0
[  117.695958][ T3951]  ? unix_dgram_poll+0x670/0x670
[  117.700746][ T3951]  ? unix_seqpacket_sendmsg+0x108/0x1d0
[  117.706258][ T3951]  ? unix_dgram_peer_wake_me+0x3d0/0x3d0
[  117.711836][ T3951]  ____sys_sendmsg+0x5ac/0x8f0
[  117.716492][ T3951]  ? __sys_sendmsg_sock+0x2b0/0x2b0
[  117.721530][ T3951]  ? __sys_sendmmsg+0x500/0x700
[  117.726211][ T3951]  ? __sys_sendmmsg+0x3e6/0x700
[  117.730979][ T3951]  __sys_sendmmsg+0x3c3/0x700
[  117.735495][ T3951]  ? __ia32_sys_sendmsg+0x90/0x90
[  117.740354][ T3951]  ? proc_fail_nth_write+0x20b/0x290
[  117.745574][ T3951]  ? proc_fail_nth_read+0x210/0x210
[  117.750603][ T3951]  ? proc_fail_nth_read+0x210/0x210
[  117.755634][ T3951]  ? memset+0x1f/0x40
[  117.759454][ T3951]  ? fsnotify+0x1280/0x1340
[  117.763785][ T3951]  ? __kernel_write+0x350/0x350
[  117.768472][ T3951]  ? check_preemption_disabled+0x9f/0x320
[  117.774030][ T3951]  ? debug_smp_processor_id+0x20/0x20
[  117.779256][ T3951]  ? debug_smp_processor_id+0x20/0x20
[  117.784659][ T3951]  ? __ia32_sys_read+0x80/0x80
[  117.789222][ T3951]  ? __do_page_fault+0x725/0xbb0
[  117.793993][ T3951]  __x64_sys_sendmmsg+0x9c/0xb0
[  117.798678][ T3951]  do_syscall_64+0xca/0x1c0
[  117.803020][ T3951]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[  117.808744][ T3951] RIP: 0033:0x7fa258692b99
[  117.812999][ T3951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.832438][ T3951] RSP: 002b:00007fa257914048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  117.840817][ T3951] RAX: ffffffffffffffda RBX: 00007fa258820fa0 RCX: 00007fa258692b99
[  117.848715][ T3951] RDX: 000000000400002c RSI: 00000000200077c0 RDI: 0000000000000003
[  117.856518][ T3951] RBP: 00007fa2579140a0 R08: 0000000000000000 R09: 0000000000000000
[  117.864333][ T3951] R10: 000000000000fffe R11: 0000000000000246 R12: 0000000000000002
[  117.872318][ T3951] R13: 000000000000000b R14: 00007fa258820fa0 R15: 00007ffe40a71d08
[  117.883013][  T973] hid-generic 0003:044F:B65D.0011: unknown main item tag 0x0
[  117.890372][  T973] hid-generic 0003:044F:B65D.0011: unbalanced collection at end of report description
[  117.900099][  T973] hid-generic: probe of 0003:044F:B65D.0011 failed with error -22
[  117.919619][ T3954] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1063'.
[  118.060142][  T972] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  118.163641][ T3886] EXT4-fs (loop2): Test dummy encryption mode enabled
[  118.272367][ T3971] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1067'.
[  118.320018][  T972] usb 4-1: Using ep0 maxpacket: 16
[  118.440030][  T972] usb 4-1: descriptor type invalid, skip
[  118.445476][  T972] usb 4-1: descriptor type invalid, skip
[  118.539973][  T972] usb 4-1: config 0 has no interfaces?
[  118.699935][  T972] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  118.708774][  T972] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.729814][  T972] usb 4-1: Product: syz
[  118.733787][  T972] usb 4-1: Manufacturer: syz
[  118.738207][  T972] usb 4-1: SerialNumber: syz
[  118.760653][  T972] usb 4-1: config 0 descriptor??
[  119.002595][  T107] usb 4-1: USB disconnect, device number 26
[  119.219598][  T973] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  119.354609][  T107] usb 3-1: USB disconnect, device number 9
[  119.412993][  T972] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  119.469476][  T973] usb 2-1: Using ep0 maxpacket: 8
[  119.589723][  T973] usb 2-1: config 135 has an invalid interface number: 230 but max is 0
[  119.598394][  T973] usb 2-1: config 135 has an invalid descriptor of length 194, skipping remainder of the config
[  119.626506][  T973] usb 2-1: config 135 has no interface number 0
[  119.633570][  T973] usb 2-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  119.671224][ T3989] EXT4-fs (loop3): Test dummy encryption mode enabled
[  119.680220][ T3989] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,stripe=0x0000000000010000,dioread_nolock,,errors=continue
[  119.724544][ T3992] ------------[ cut here ]------------
[  119.729837][ T3992] WARNING: CPU: 1 PID: 3992 at fs/inode.c:302 drop_nlink+0xbb/0x100
[  119.737614][ T3992] Modules linked in:
[  119.741354][ T3992] CPU: 1 PID: 3992 Comm: syz.3.1073 Not tainted 5.4.276-syzkaller-00020-g4275fce9fe94 #0
[  119.750986][ T3992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  119.760886][ T3992] RIP: 0010:drop_nlink+0xbb/0x100
[  119.765739][ T3992] Code: 49 8b 1e 48 8d bb d0 04 00 00 be 08 00 00 00 e8 7b 9a f2 ff f0 48 ff 83 d0 04 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 d5 e1 c2 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[  119.785181][ T3992] RSP: 0018:ffff8881e725f7c8 EFLAGS: 00010293
[  119.791086][ T3992] RAX: ffffffff81a1572b RBX: 1ffff1103b35d815 RCX: ffff8881de093f00
[  119.798889][ T3992] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.799384][  T972] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.806710][ T3992] RBP: 0000000000000000 R08: ffffffff81a156af R09: 0000000000000003
[  119.806715][ T3992] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881d9aec0a8
[  119.806720][ T3992] R13: dffffc0000000000 R14: ffff8881d9aec060 R15: dffffc0000000000
[  119.806728][ T3992] FS:  00007fe93a5686c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  119.806732][ T3992] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  119.806737][ T3992] CR2: 00007fe93bfa9710 CR3: 0000000005e0e000 CR4: 00000000003406a0
[  119.806750][ T3992] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  119.817705][  T973] usb 2-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  119.825283][ T3992] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  119.825287][ T3992] Call Trace:
[  119.825304][ T3992]  ? __warn+0x162/0x250
[  119.825314][ T3992]  ? report_bug+0x3a1/0x4e0
[  119.825321][ T3992]  ? drop_nlink+0xbb/0x100
[  119.825328][ T3992]  ? drop_nlink+0xbb/0x100
[  119.825344][ T3992]  ? do_invalid_op+0x6e/0x110
[  119.833281][  T973] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.841178][ T3992]  ? invalid_op+0x1e/0x30
[  119.841187][ T3992]  ? drop_nlink+0x3f/0x100
[  119.841193][ T3992]  ? drop_nlink+0xbb/0x100
[  119.841206][ T3992]  ? drop_nlink+0xbb/0x100
[  119.851582][  T972] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.856368][ T3992]  ? drop_nlink+0xbb/0x100
[  119.856384][ T3992]  shmem_rmdir+0x54/0x80
[  119.864557][  T972] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  119.872073][ T3992]  vfs_rmdir+0x285/0x3c0
[  119.872084][ T3992]  incfs_kill_sb+0x105/0x200
[  119.872094][ T3992]  deactivate_locked_super+0xa8/0x110
[  119.872101][ T3992]  deactivate_super+0x1e2/0x2a0
[  119.872115][ T3992]  ? deactivate_locked_super+0x110/0x110
[  119.881321][  T973] usb 2-1: Product: syz
[  119.888745][ T3992]  ? fast_dput+0x7a/0x280
[  119.888765][ T3992]  cleanup_mnt+0x44e/0x500
[  119.892128][  T973] usb 2-1: Manufacturer: syz
[  119.895865][ T3992]  task_work_run+0x140/0x170
[  119.895876][ T3992]  do_exit+0xcaf/0x2bc0
[  119.895892][ T3992]  ? put_task_struct+0x80/0x80
[  119.900592][  T972] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.904449][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  119.904459][ T3992]  do_group_exit+0x138/0x300
[  119.904473][ T3992]  get_signal+0xdb1/0x1440
[  119.909159][  T973] usb 2-1: SerialNumber: syz
[  119.913212][ T3992]  do_signal+0xb0/0x11f0
[  119.913223][ T3992]  ? signal_fault+0x1e0/0x1e0
[  119.913233][ T3992]  ? check_preemption_disabled+0x9f/0x320
[  119.913247][ T3992]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  119.922614][  T972] usb 5-1: config 0 descriptor??
[  119.925279][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  119.925289][ T3992]  exit_to_usermode_loop+0xc0/0x1a0
[  119.925303][ T3992]  prepare_exit_to_usermode+0x199/0x200
[  120.084752][ T3992]  ret_from_fork+0x15/0x30
[  120.088964][ T3992] RIP: 0033:0x7fe93b2e6b99
[  120.093217][ T3992] Code: Bad RIP value.
[  120.097113][ T3992] RSP: 002b:00007fe93a567ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  120.105359][ T3992] RAX: 0000000000000000 RBX: 00007fe93b474fa0 RCX: 00007fe93b2e6b99
[  120.113171][ T3992] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.120983][ T3992] RBP: 00007fe93b36777e R08: 0000000000000000 R09: 0000000000000000
[  120.128794][ T3992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.136607][ T3992] R13: 000000000000000b R14: 00007fe93b474fa0 R15: 00007fff132c98d8
[  120.144422][ T3992] ---[ end trace 71a6356ec71bddbf ]---
[  120.151462][ T3992] ==================================================================
[  120.159340][ T3992] BUG: KASAN: null-ptr-deref in ihold+0x1b/0x50
[  120.165405][ T3992] Write of size 4 at addr 0000000000000160 by task syz.3.1073/3992
[  120.173126][ T3992] 
[  120.175327][ T3992] CPU: 1 PID: 3992 Comm: syz.3.1073 Tainted: G        W         5.4.276-syzkaller-00020-g4275fce9fe94 #0
[  120.186320][ T3992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  120.196211][ T3992] Call Trace:
[  120.199349][ T3992]  dump_stack+0x1d8/0x241
[  120.203506][ T3992]  ? panic+0x89d/0x89d
[  120.207416][ T3992]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[  120.213067][ T3992]  ? _raw_spin_trylock_bh+0x190/0x190
[  120.218269][ T3992]  ? shmem_destroy_inode+0x5/0x10
[  120.223128][ T3992]  ? ihold+0x1b/0x50
[  120.226864][ T3992]  __kasan_report+0xe9/0x120
[  120.231292][ T3992]  ? ihold+0x1b/0x50
[  120.235022][ T3992]  kasan_report+0x30/0x60
[  120.239275][ T3992]  check_memory_region+0x272/0x280
[  120.244216][ T3992]  ihold+0x1b/0x50
[  120.247777][ T3992]  vfs_rmdir+0x1e0/0x3c0
[  120.251944][ T3992]  incfs_kill_sb+0x105/0x200
[  120.256375][ T3992]  deactivate_locked_super+0xa8/0x110
[  120.261583][ T3992]  deactivate_super+0x1e2/0x2a0
[  120.266267][ T3992]  ? deactivate_locked_super+0x110/0x110
[  120.269464][  T972] hid (null): bogus close delimiter
[  120.271749][ T3992]  ? fast_dput+0x7a/0x280
[  120.281022][ T3992]  cleanup_mnt+0x44e/0x500
[  120.285270][ T3992]  task_work_run+0x140/0x170
[  120.289703][ T3992]  do_exit+0xcaf/0x2bc0
[  120.293872][ T3992]  ? put_task_struct+0x80/0x80
[  120.298466][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  120.303845][ T3992]  do_group_exit+0x138/0x300
[  120.308264][ T3992]  get_signal+0xdb1/0x1440
[  120.312523][ T3992]  do_signal+0xb0/0x11f0
[  120.316598][ T3992]  ? signal_fault+0x1e0/0x1e0
[  120.321111][ T3992]  ? check_preemption_disabled+0x9f/0x320
[  120.326669][ T3992]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  120.331612][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  120.336991][ T3992]  exit_to_usermode_loop+0xc0/0x1a0
[  120.342028][ T3992]  prepare_exit_to_usermode+0x199/0x200
[  120.347408][ T3992]  ret_from_fork+0x15/0x30
[  120.351663][ T3992] RIP: 0033:0x7fe93b2e6b99
[  120.355913][ T3992] Code: Bad RIP value.
[  120.359813][ T3992] RSP: 002b:00007fe93a567ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  120.368059][ T3992] RAX: 0000000000000000 RBX: 00007fe93b474fa0 RCX: 00007fe93b2e6b99
[  120.375871][ T3992] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.383682][ T3992] RBP: 00007fe93b36777e R08: 0000000000000000 R09: 0000000000000000
[  120.391494][ T3992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.399305][ T3992] R13: 000000000000000b R14: 00007fe93b474fa0 R15: 00007fff132c98d8
[  120.402519][   T23] audit: type=1326 audit(1719835048.949:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3942 comm="syz.0.1059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6d1fd0b99 code=0x7fc00000
[  120.407121][ T3992] ==================================================================
[  120.438190][ T3992] Disabling lock debugging due to kernel taint
[  120.444593][ T3992] BUG: kernel NULL pointer dereference, address: 0000000000000160
[  120.452217][ T3992] #PF: supervisor write access in kernel mode
[  120.458267][ T3992] #PF: error_code(0x0002) - not-present page
[  120.464082][ T3992] PGD 0 P4D 0 
[  120.467298][ T3992] Oops: 0002 [#1] PREEMPT SMP KASAN
[  120.472330][ T3992] CPU: 0 PID: 3992 Comm: syz.3.1073 Tainted: G    B   W         5.4.276-syzkaller-00020-g4275fce9fe94 #0
[  120.483440][ T3992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  120.493430][ T3992] RIP: 0010:ihold+0x20/0x50
[  120.497763][ T3992] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 36 da c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 b5 92 f2 ff bd 01 00 00 00 <f0> 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 fa dc c2 ff
[  120.507192][  T377] usb 2-1: USB disconnect, device number 21
[  120.517214][ T3992] RSP: 0018:ffff8881e725f800 EFLAGS: 00010246
[  120.517222][ T3992] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881de093f00
[  120.517226][ T3992] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[  120.517230][ T3992] RBP: 0000000000000001 R08: ffffffff813ae585 R09: 0000000000000003
[  120.517235][ T3992] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000
[  120.517240][ T3992] R13: dffffc0000000000 R14: ffff8881d9aef7e0 R15: 0000000000000000
[  120.517247][ T3992] FS:  00007fe93a5686c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  120.517251][ T3992] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.517256][ T3992] CR2: 0000000000000160 CR3: 00000001ed82e000 CR4: 00000000003406b0
[  120.517262][ T3992] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  120.517267][ T3992] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  120.517269][ T3992] Call Trace:
[  120.517286][ T3992]  ? __die+0xb4/0x100
[  120.517296][ T3992]  ? no_context+0xbda/0xe50
[  120.517307][ T3992]  ? schedule_preempt_disabled+0x20/0x20
[  120.517316][ T3992]  ? is_prefetch+0x4b0/0x4b0
[  120.517323][ T3992]  ? ihold+0x1b/0x50
[  120.517331][ T3992]  ? __do_page_fault+0xa7d/0xbb0
[  120.517338][ T3992]  ? __bad_area_nosemaphore+0xc0/0x460
[  120.517348][ T3992]  ? page_fault+0x2f/0x40
[  120.517363][ T3992]  ? check_panic_on_warn+0x55/0xa0
[  120.651266][ T3992]  ? ihold+0x20/0x50
[  120.655084][ T3992]  vfs_rmdir+0x1e0/0x3c0
[  120.659418][ T3992]  incfs_kill_sb+0x105/0x200
[  120.663847][ T3992]  deactivate_locked_super+0xa8/0x110
[  120.669063][ T3992]  deactivate_super+0x1e2/0x2a0
[  120.673842][ T3992]  ? deactivate_locked_super+0x110/0x110
[  120.679310][ T3992]  ? fast_dput+0x7a/0x280
[  120.683540][ T3992]  cleanup_mnt+0x44e/0x500
[  120.687742][ T3992]  task_work_run+0x140/0x170
[  120.692156][ T3992]  do_exit+0xcaf/0x2bc0
[  120.696146][ T3992]  ? put_task_struct+0x80/0x80
[  120.700836][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  120.706311][ T3992]  do_group_exit+0x138/0x300
[  120.710729][ T3992]  get_signal+0xdb1/0x1440
[  120.715007][ T3992]  do_signal+0xb0/0x11f0
[  120.719071][ T3992]  ? signal_fault+0x1e0/0x1e0
[  120.723662][ T3992]  ? check_preemption_disabled+0x9f/0x320
[  120.729223][ T3992]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  120.734173][ T3992]  ? _raw_spin_lock_irqsave+0x210/0x210
[  120.739542][ T3992]  exit_to_usermode_loop+0xc0/0x1a0
[  120.744575][ T3992]  prepare_exit_to_usermode+0x199/0x200
[  120.749958][ T3992]  ret_from_fork+0x15/0x30
[  120.754206][ T3992] RIP: 0033:0x7fe93b2e6b99
[  120.758462][ T3992] Code: Bad RIP value.
[  120.762366][ T3992] RSP: 002b:00007fe93a567ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  120.770781][ T3992] RAX: 0000000000000000 RBX: 00007fe93b474fa0 RCX: 00007fe93b2e6b99
[  120.778636][ T3992] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.786404][ T3992] RBP: 00007fe93b36777e R08: 0000000000000000 R09: 0000000000000000
[  120.794308][ T3992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.802207][ T3992] R13: 000000000000000b R14: 00007fe93b474fa0 R15: 00007fff132c98d8
[  120.810017][ T3992] Modules linked in:
[  120.813839][ T3992] CR2: 0000000000000160
[  120.817838][ T3992] ---[ end trace 71a6356ec71bddc0 ]---
[  120.823130][ T3992] RIP: 0010:ihold+0x20/0x50
[  120.827587][ T3992] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 36 da c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 b5 92 f2 ff bd 01 00 00 00 <f0> 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 fa dc c2 ff
[  120.847012][ T3992] RSP: 0018:ffff8881e725f800 EFLAGS: 00010246
[  120.852990][ T3992] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881de093f00
[  120.861085][ T3992] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[  120.868899][ T3992] RBP: 0000000000000001 R08: ffffffff813ae585 R09: 0000000000000003
[  120.876712][ T3992] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000
[  120.884519][ T3992] R13: dffffc0000000000 R14: ffff8881d9aef7e0 R15: 0000000000000000
[  120.892333][ T3992] FS:  00007fe93a5686c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  120.901097][ T3992] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.907605][ T3992] CR2: 00007fe93b2e6b6f CR3: 00000001ed82e000 CR4: 00000000003406b0
[  120.915601][ T3992] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  120.923410][ T3992] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  120.931220][ T3992] Kernel panic - not syncing: Fatal exception
[  120.937670][ T3992] Kernel Offset: disabled
[  120.941793][ T3992] Rebooting in 86400 seconds..